Traffic Trace Info
DumpFile: 201004161015.dump
FileSize: 2091.78MB
Id: 201004161015
StartTime: Fri Apr 16 10:15:01 2010
EndTime: Fri Apr 16 10:30:01 2010
TotalTime: 899.75 seconds
TotalCapSize: 1630.79MB CapLen: 96 bytes
# of packets: 30210696 (18565.01MB)
AvgRate: 173.07Mbps stddev:17.28M
IP flow (unique src/dst pair) Information
# of flows: 887768 (avg. 34.03 pkts/flow)
Top 10 big flow size (bytes/total in %):
2.1% 1.7% 1.4% 1.2% 1.0% 1.0% 1.0% 0.9% 0.9% 0.8%
IP address Information
# of IPv4 addresses: 473526
Top 10 bandwidth usage (bytes/total in %):
20.4% 10.9% 3.9% 3.5% 3.4% 3.0% 2.7% 2.7% 2.2% 2.2%
# of IPv6 addresses: 1034
Top 10 bandwidth usage (bytes/total in %):
19.2% 9.8% 9.6% 6.2% 5.5% 5.1% 5.0% 4.9% 4.5% 4.4%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](201004161015.pktlen.png)
detailed numbers
[ 32- 63]: 4929929
[ 64- 127]: 7279608
[ 128- 255]: 2661972
[ 256- 511]: 2775866
[ 512- 1023]: 1082273
[ 1024- 2047]: 11481048
Protocol Breakdown
![[protocol breakdown chart]](201004161015.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 30210696 (100.00%) 19466821607 (100.00%) 644.37
ip 30153591 ( 99.81%) 19457249340 ( 99.95%) 645.27
tcp 16291844 ( 53.93%) 12086655547 ( 62.09%) 741.88
http(s) 6919910 ( 22.91%) 9402440096 ( 48.30%) 1358.75
http(c) 4492799 ( 14.87%) 566591781 ( 2.91%) 126.11
squid 269197 ( 0.89%) 90373863 ( 0.46%) 335.72
smtp 336918 ( 1.12%) 109899213 ( 0.56%) 326.19
ftp 17706 ( 0.06%) 1729097 ( 0.01%) 97.66
pop3 34793 ( 0.12%) 17086004 ( 0.09%) 491.08
imap 1698 ( 0.01%) 331358 ( 0.00%) 195.15
telnet 361 ( 0.00%) 41819 ( 0.00%) 115.84
ssh 651639 ( 2.16%) 94901587 ( 0.49%) 145.64
dns 52861 ( 0.17%) 3764488 ( 0.02%) 71.21
bgp 150 ( 0.00%) 44382 ( 0.00%) 295.88
napster 23 ( 0.00%) 1666 ( 0.00%) 72.43
realaud 5 ( 0.00%) 705 ( 0.00%) 141.00
rtsp 98472 ( 0.33%) 6349776 ( 0.03%) 64.48
icecast 6352 ( 0.02%) 411436 ( 0.00%) 64.77
hotline 4 ( 0.00%) 246 ( 0.00%) 61.50
other 3408954 ( 11.28%) 1792687910 ( 9.21%) 525.88
udp 8930076 ( 29.56%) 4746270505 ( 24.38%) 531.49
dns 749200 ( 2.48%) 151227132 ( 0.78%) 201.85
realaud 26 ( 0.00%) 4631 ( 0.00%) 178.12
halflif 70 ( 0.00%) 8089 ( 0.00%) 115.56
starcra 194 ( 0.00%) 24086 ( 0.00%) 124.15
everque 820 ( 0.00%) 152158 ( 0.00%) 185.56
unreal 79 ( 0.00%) 10704 ( 0.00%) 135.49
quake 102 ( 0.00%) 8092 ( 0.00%) 79.33
cuseeme 4 ( 0.00%) 446 ( 0.00%) 111.50
other 8179150 ( 27.07%) 4594629161 ( 23.60%) 561.75
icmp 494538 ( 1.64%) 54094997 ( 0.28%) 109.38
ipip 293 ( 0.00%) 35052 ( 0.00%) 119.63
ipsec 1002049 ( 3.32%) 425479526 ( 2.19%) 424.61
ip6 3417961 ( 11.31%) 2135954268 ( 10.97%) 624.92
other 16830 ( 0.06%) 8759445 ( 0.04%) 520.47
frag 2128 ( 0.01%) 2091691 ( 0.01%) 982.94
ip6 57103 ( 0.19%) 9572147 ( 0.05%) 167.63
tcp6 23750 ( 0.08%) 3251993 ( 0.02%) 136.93
http(s) 618 ( 0.00%) 676551 ( 0.00%) 1094.74
http(c) 4397 ( 0.01%) 397311 ( 0.00%) 90.36
smtp 234 ( 0.00%) 76187 ( 0.00%) 325.59
ftp 5146 ( 0.02%) 526358 ( 0.00%) 102.28
imap 355 ( 0.00%) 40900 ( 0.00%) 115.21
ssh 5261 ( 0.02%) 644230 ( 0.00%) 122.45
dns 197 ( 0.00%) 65046 ( 0.00%) 330.18
bgp 130 ( 0.00%) 27885 ( 0.00%) 214.50
other 7412 ( 0.02%) 797525 ( 0.00%) 107.60
udp6 26711 ( 0.09%) 5492231 ( 0.03%) 205.62
dns 26511 ( 0.09%) 5459687 ( 0.03%) 205.94
other 200 ( 0.00%) 32544 ( 0.00%) 162.72
icmp6 6563 ( 0.02%) 784423 ( 0.00%) 119.52
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
other6 49 ( 0.00%) 39420 ( 0.00%) 804.49
tcpdump file: 201004161015.dump.gz (738.81 MB)