Traffic Trace Info
DumpFile: 201004161030.dump
FileSize: 2061.08MB
Id: 201004161030
StartTime: Fri Apr 16 10:30:01 2010
EndTime: Fri Apr 16 10:45:01 2010
TotalTime: 899.80 seconds
TotalCapSize: 1606.20MB CapLen: 96 bytes
# of packets: 29809828 (18138.56MB)
AvgRate: 169.09Mbps stddev:16.04M
IP flow (unique src/dst pair) Information
# of flows: 874528 (avg. 34.09 pkts/flow)
Top 10 big flow size (bytes/total in %):
1.5% 1.2% 1.2% 1.1% 1.1% 1.0% 0.9% 0.9% 0.8% 0.8%
IP address Information
# of IPv4 addresses: 455729
Top 10 bandwidth usage (bytes/total in %):
19.6% 10.9% 3.8% 3.8% 3.6% 3.5% 3.1% 2.7% 2.2% 2.1%
# of IPv6 addresses: 1060
Top 10 bandwidth usage (bytes/total in %):
20.7% 11.0% 8.0% 6.6% 5.8% 5.7% 5.6% 5.3% 3.8% 3.8%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](201004161030.pktlen.png)
detailed numbers
[ 32- 63]: 4690028
[ 64- 127]: 7592933
[ 128- 255]: 2560427
[ 256- 511]: 2677162
[ 512- 1023]: 1116661
[ 1024- 2047]: 11172617
Protocol Breakdown
![[protocol breakdown chart]](201004161030.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 29809828 (100.00%) 19019657068 (100.00%) 638.03
ip 29751976 ( 99.81%) 19010625351 ( 99.95%) 638.97
tcp 15765283 ( 52.89%) 11672530600 ( 61.37%) 740.39
http(s) 6517180 ( 21.86%) 8849431570 ( 46.53%) 1357.86
http(c) 4260826 ( 14.29%) 577006776 ( 3.03%) 135.42
squid 247159 ( 0.83%) 70552609 ( 0.37%) 285.45
smtp 386827 ( 1.30%) 164123034 ( 0.86%) 424.28
nntp 2 ( 0.00%) 120 ( 0.00%) 60.00
ftp 14109 ( 0.05%) 1405718 ( 0.01%) 99.63
pop3 45631 ( 0.15%) 19806414 ( 0.10%) 434.06
imap 2393 ( 0.01%) 1047761 ( 0.01%) 437.84
telnet 569 ( 0.00%) 70968 ( 0.00%) 124.72
ssh 687196 ( 2.31%) 129012842 ( 0.68%) 187.74
dns 49445 ( 0.17%) 3459014 ( 0.02%) 69.96
bgp 157 ( 0.00%) 55532 ( 0.00%) 353.71
napster 152 ( 0.00%) 24437 ( 0.00%) 160.77
realaud 196 ( 0.00%) 19912 ( 0.00%) 101.59
rtsp 27850 ( 0.09%) 2160971 ( 0.01%) 77.59
icecast 6278 ( 0.02%) 410928 ( 0.00%) 65.46
hotline 11 ( 0.00%) 980 ( 0.00%) 89.09
other 3519296 ( 11.81%) 1853940654 ( 9.75%) 526.79
udp 9143138 ( 30.67%) 4806862278 ( 25.27%) 525.73
dns 755456 ( 2.53%) 153354022 ( 0.81%) 203.00
realaud 47 ( 0.00%) 4120 ( 0.00%) 87.66
halflif 65 ( 0.00%) 6404 ( 0.00%) 98.52
starcra 253 ( 0.00%) 34820 ( 0.00%) 137.63
everque 714 ( 0.00%) 144098 ( 0.00%) 201.82
unreal 88 ( 0.00%) 11246 ( 0.00%) 127.80
quake 50 ( 0.00%) 5540 ( 0.00%) 110.80
cuseeme 8 ( 0.00%) 664 ( 0.00%) 83.00
other 8385870 ( 28.13%) 4652941437 ( 24.46%) 554.85
icmp 543727 ( 1.82%) 69230866 ( 0.36%) 127.33
ipip 401 ( 0.00%) 50174 ( 0.00%) 125.12
ipsec 905263 ( 3.04%) 386622098 ( 2.03%) 427.08
ip6 3383569 ( 11.35%) 2073641641 ( 10.90%) 612.86
other 10595 ( 0.04%) 1687694 ( 0.01%) 159.29
frag 9322 ( 0.03%) 11010775 ( 0.06%) 1181.16
ip6 57852 ( 0.19%) 9031717 ( 0.05%) 156.12
tcp6 24419 ( 0.08%) 2852563 ( 0.01%) 116.82
http(s) 551 ( 0.00%) 285945 ( 0.00%) 518.96
http(c) 4640 ( 0.02%) 417884 ( 0.00%) 90.06
smtp 208 ( 0.00%) 56963 ( 0.00%) 273.86
ftp 4987 ( 0.02%) 508829 ( 0.00%) 102.03
imap 424 ( 0.00%) 49324 ( 0.00%) 116.33
ssh 5465 ( 0.02%) 666722 ( 0.00%) 122.00
dns 129 ( 0.00%) 35066 ( 0.00%) 271.83
bgp 125 ( 0.00%) 28363 ( 0.00%) 226.90
other 7890 ( 0.03%) 803467 ( 0.00%) 101.83
udp6 27216 ( 0.09%) 5409000 ( 0.03%) 198.74
dns 27130 ( 0.09%) 5392865 ( 0.03%) 198.78
other 86 ( 0.00%) 16135 ( 0.00%) 187.62
icmp6 6145 ( 0.02%) 732310 ( 0.00%) 119.17
pim6 31 ( 0.00%) 4216 ( 0.00%) 136.00
other6 41 ( 0.00%) 33628 ( 0.00%) 820.20
tcpdump file: 201004161030.dump.gz (736.30 MB)