Traffic Trace Info
DumpFile: 201004160815.dump
FileSize: 1941.63MB
Id: 201004160815
StartTime: Fri Apr 16 08:15:00 2010
EndTime: Fri Apr 16 08:30:01 2010
TotalTime: 900.55 seconds
TotalCapSize: 1518.38MB CapLen: 96 bytes
# of packets: 27737382 (17054.91MB)
AvgRate: 158.88Mbps stddev:13.83M
IP flow (unique src/dst pair) Information
# of flows: 915500 (avg. 30.30 pkts/flow)
Top 10 big flow size (bytes/total in %):
3.7% 2.5% 2.0% 1.8% 1.3% 1.2% 1.1% 1.1% 1.1% 1.0%
IP address Information
# of IPv4 addresses: 487030
Top 10 bandwidth usage (bytes/total in %):
19.9% 13.0% 4.4% 4.0% 3.9% 3.8% 3.8% 3.8% 3.5% 3.2%
# of IPv6 addresses: 910
Top 10 bandwidth usage (bytes/total in %):
24.4% 12.3% 7.8% 6.6% 6.3% 6.2% 4.9% 4.5% 4.4% 4.4%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](201004160815.pktlen.png)
detailed numbers
[ 32- 63]: 3818379
[ 64- 127]: 7653896
[ 128- 255]: 2833084
[ 256- 511]: 1913413
[ 512- 1023]: 775013
[ 1024- 2047]: 10743597
Protocol Breakdown
![[protocol breakdown chart]](201004160815.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 27737382 (100.00%) 17883370558 (100.00%) 644.74
ip 27685761 ( 99.81%) 17875728119 ( 99.96%) 645.67
tcp 14273899 ( 51.46%) 10979776875 ( 61.40%) 769.22
http(s) 5650041 ( 20.37%) 7767478874 ( 43.43%) 1374.77
http(c) 3243124 ( 11.69%) 380485880 ( 2.13%) 117.32
squid 334653 ( 1.21%) 108073702 ( 0.60%) 322.94
smtp 308622 ( 1.11%) 61032605 ( 0.34%) 197.76
nntp 6 ( 0.00%) 362 ( 0.00%) 60.33
ftp 16193 ( 0.06%) 1527454 ( 0.01%) 94.33
pop3 45018 ( 0.16%) 11443510 ( 0.06%) 254.20
imap 2533 ( 0.01%) 1634783 ( 0.01%) 645.39
telnet 742 ( 0.00%) 66299 ( 0.00%) 89.35
ssh 715239 ( 2.58%) 101182414 ( 0.57%) 141.47
dns 54149 ( 0.20%) 3748882 ( 0.02%) 69.23
bgp 191 ( 0.00%) 83714 ( 0.00%) 438.29
napster 132 ( 0.00%) 36292 ( 0.00%) 274.94
realaud 1687 ( 0.01%) 113402 ( 0.00%) 67.22
rtsp 231 ( 0.00%) 43857 ( 0.00%) 189.86
icecast 690 ( 0.00%) 71146 ( 0.00%) 103.11
hotline 6 ( 0.00%) 380 ( 0.00%) 63.33
other 3900637 ( 14.06%) 2542753019 ( 14.22%) 651.88
udp 8701409 ( 31.37%) 4398777957 ( 24.60%) 505.52
dns 615550 ( 2.22%) 111633398 ( 0.62%) 181.36
realaud 912 ( 0.00%) 55463 ( 0.00%) 60.81
halflif 80 ( 0.00%) 8532 ( 0.00%) 106.65
starcra 23982 ( 0.09%) 23101415 ( 0.13%) 963.28
everque 474 ( 0.00%) 90605 ( 0.00%) 191.15
unreal 72 ( 0.00%) 9519 ( 0.00%) 132.21
quake 42 ( 0.00%) 3676 ( 0.00%) 87.52
cuseeme 21 ( 0.00%) 2077 ( 0.00%) 98.90
other 8059819 ( 29.06%) 4263573629 ( 23.84%) 528.99
icmp 566547 ( 2.04%) 113294216 ( 0.63%) 199.97
ipip 333 ( 0.00%) 42440 ( 0.00%) 127.45
ipsec 28630 ( 0.10%) 15968870 ( 0.09%) 557.77
ip6 3806952 ( 13.72%) 2336169101 ( 13.06%) 613.66
other 307991 ( 1.11%) 31698660 ( 0.18%) 102.92
frag 2962 ( 0.01%) 3368341 ( 0.02%) 1137.18
ip6 51621 ( 0.19%) 7642439 ( 0.04%) 148.05
tcp6 22167 ( 0.08%) 2398630 ( 0.01%) 108.21
http(s) 31 ( 0.00%) 16753 ( 0.00%) 540.42
http(c) 4099 ( 0.01%) 372309 ( 0.00%) 90.83
smtp 240 ( 0.00%) 96297 ( 0.00%) 401.24
ftp 5182 ( 0.02%) 528123 ( 0.00%) 101.91
imap 337 ( 0.00%) 38708 ( 0.00%) 114.86
ssh 5082 ( 0.02%) 602052 ( 0.00%) 118.47
dns 79 ( 0.00%) 26945 ( 0.00%) 341.08
bgp 104 ( 0.00%) 13231 ( 0.00%) 127.22
other 7013 ( 0.03%) 704212 ( 0.00%) 100.42
udp6 23105 ( 0.08%) 4428554 ( 0.02%) 191.67
dns 22915 ( 0.08%) 4395349 ( 0.02%) 191.81
other 190 ( 0.00%) 33205 ( 0.00%) 174.76
icmp6 6261 ( 0.02%) 757014 ( 0.00%) 120.91
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
other6 58 ( 0.00%) 54161 ( 0.00%) 933.81
tcpdump file: 201004160815.dump.gz (679.32 MB)