Traffic Trace Info
DumpFile: 201004161000.dump
FileSize: 2227.83MB
Id: 201004161000
StartTime: Fri Apr 16 10:00:00 2010
EndTime: Fri Apr 16 10:15:01 2010
TotalTime: 900.49 seconds
TotalCapSize: 1736.88MB CapLen: 96 bytes
# of packets: 32174651 (20374.82MB)
AvgRate: 189.80Mbps stddev:31.92M
IP flow (unique src/dst pair) Information
# of flows: 897065 (avg. 35.87 pkts/flow)
Top 10 big flow size (bytes/total in %):
1.8% 1.7% 1.5% 1.1% 1.0% 1.0% 0.9% 0.9% 0.8% 0.7%
IP address Information
# of IPv4 addresses: 474026
Top 10 bandwidth usage (bytes/total in %):
17.8% 9.2% 8.6% 4.0% 3.9% 3.3% 3.1% 2.9% 2.2% 2.0%
# of IPv6 addresses: 1033
Top 10 bandwidth usage (bytes/total in %):
15.7% 11.3% 8.8% 7.1% 6.2% 5.7% 5.7% 5.6% 4.0% 4.0%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](201004161000.pktlen.png)
detailed numbers
[ 32- 63]: 5328177
[ 64- 127]: 7694013
[ 128- 255]: 2504554
[ 256- 511]: 2814922
[ 512- 1023]: 1115515
[ 1024- 2047]: 12717470
Protocol Breakdown
![[protocol breakdown chart]](201004161000.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 32174651 (100.00%) 21364550378 (100.00%) 664.02
ip 32121149 ( 99.83%) 21356192042 ( 99.96%) 664.86
tcp 18559131 ( 57.68%) 14255036670 ( 66.72%) 768.09
http(s) 8245668 ( 25.63%) 11236519827 ( 52.59%) 1362.72
http(c) 4993584 ( 15.52%) 602397164 ( 2.82%) 120.63
squid 352069 ( 1.09%) 131286745 ( 0.61%) 372.90
smtp 341477 ( 1.06%) 122153058 ( 0.57%) 357.72
ftp 19459 ( 0.06%) 1850536 ( 0.01%) 95.10
pop3 23706 ( 0.07%) 7278157 ( 0.03%) 307.02
imap 1889 ( 0.01%) 995413 ( 0.00%) 526.95
telnet 297 ( 0.00%) 53602 ( 0.00%) 180.48
ssh 821992 ( 2.55%) 115704453 ( 0.54%) 140.76
dns 68576 ( 0.21%) 5733130 ( 0.03%) 83.60
bgp 154 ( 0.00%) 53693 ( 0.00%) 348.66
napster 11 ( 0.00%) 666 ( 0.00%) 60.55
realaud 113 ( 0.00%) 11107 ( 0.00%) 98.29
rtsp 216820 ( 0.67%) 13550130 ( 0.06%) 62.49
icecast 6120 ( 0.02%) 395495 ( 0.00%) 64.62
hotline 2 ( 0.00%) 132 ( 0.00%) 66.00
other 3467193 ( 10.78%) 2017053302 ( 9.44%) 581.75
udp 8776337 ( 27.28%) 4586872229 ( 21.47%) 522.64
dns 949815 ( 2.95%) 185268367 ( 0.87%) 195.06
realaud 41 ( 0.00%) 4535 ( 0.00%) 110.61
halflif 89 ( 0.00%) 8907 ( 0.00%) 100.08
starcra 251 ( 0.00%) 30454 ( 0.00%) 121.33
everque 738 ( 0.00%) 147228 ( 0.00%) 199.50
unreal 60 ( 0.00%) 6681 ( 0.00%) 111.35
quake 62 ( 0.00%) 5546 ( 0.00%) 89.45
cuseeme 12 ( 0.00%) 1068 ( 0.00%) 89.00
other 7824954 ( 24.32%) 4401286591 ( 20.60%) 562.47
icmp 532213 ( 1.65%) 69087145 ( 0.32%) 129.81
ipip 386 ( 0.00%) 47144 ( 0.00%) 122.13
ipsec 1002290 ( 3.12%) 425162396 ( 1.99%) 424.19
ip6 3213476 ( 9.99%) 1984203338 ( 9.29%) 617.46
other 37316 ( 0.12%) 35783120 ( 0.17%) 958.92
frag 1835 ( 0.01%) 1708737 ( 0.01%) 931.19
ip6 53502 ( 0.17%) 8358336 ( 0.04%) 156.22
tcp6 24063 ( 0.07%) 2812482 ( 0.01%) 116.88
http(s) 61 ( 0.00%) 40101 ( 0.00%) 657.39
http(c) 4885 ( 0.02%) 460440 ( 0.00%) 94.26
smtp 274 ( 0.00%) 121392 ( 0.00%) 443.04
ftp 5100 ( 0.02%) 524306 ( 0.00%) 102.81
imap 494 ( 0.00%) 58184 ( 0.00%) 117.78
ssh 5106 ( 0.02%) 608972 ( 0.00%) 119.27
dns 87 ( 0.00%) 21034 ( 0.00%) 241.77
bgp 121 ( 0.00%) 21984 ( 0.00%) 181.69
other 7935 ( 0.02%) 956069 ( 0.00%) 120.49
udp6 22937 ( 0.07%) 4630212 ( 0.02%) 201.87
dns 22786 ( 0.07%) 4607875 ( 0.02%) 202.22
other 151 ( 0.00%) 22337 ( 0.00%) 147.93
icmp6 6344 ( 0.02%) 787352 ( 0.00%) 124.11
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
other6 128 ( 0.00%) 124210 ( 0.00%) 970.39
tcpdump file: 201004161000.dump.gz (784.21 MB)