Traffic Trace Info
DumpFile: 200709241400.dump
FileSize: 1426.95MB
Id: 200709241400
StartTime: Mon Sep 24 14:00:00 2007
EndTime: Mon Sep 24 14:15:00 2007
TotalTime: 899.90 seconds
TotalCapSize: 1116.86MB CapLen: 96 bytes
# of packets: 20317010 (13622.05MB)
AvgRate: 127.01Mbps stddev:20.60M
IP flow (unique src/dst pair) Information
# of flows: 657797 (avg. 30.89 pkts/flow)
Top 10 big flow size (bytes/total in %):
3.9% 2.9% 1.9% 1.8% 1.7% 1.5% 1.4% 1.2% 1.2% 0.9%
IP address Information
# of IPv4 addresses: 352856
Top 10 bandwidth usage (bytes/total in %):
20.4% 11.9% 11.0% 5.4% 4.0% 3.2% 2.9% 2.5% 2.2% 2.0%
# of IPv6 addresses: 2676
Top 10 bandwidth usage (bytes/total in %):
32.7% 32.7% 13.0% 13.0% 7.8% 5.8% 4.0% 3.9% 3.4% 2.8%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](200709241400.pktlen.png)
detailed numbers
[ 32- 63]: 4671869
[ 64- 127]: 5064946
[ 128- 255]: 824313
[ 256- 511]: 435787
[ 512- 1023]: 415554
[ 1024- 2047]: 8904541
Protocol Breakdown
![[protocol breakdown chart]](200709241400.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 20317010 (100.00%) 14283754345 (100.00%) 703.04
ip 20099794 ( 98.93%) 14255368426 ( 99.80%) 709.23
tcp 16882181 ( 83.09%) 13737903287 ( 96.18%) 813.75
http(s) 8288094 ( 40.79%) 11316401157 ( 79.23%) 1365.38
http(c) 4553729 ( 22.41%) 487257010 ( 3.41%) 107.00
squid 553600 ( 2.72%) 428264917 ( 3.00%) 773.60
smtp 471537 ( 2.32%) 87622336 ( 0.61%) 185.82
nntp 20 ( 0.00%) 2508 ( 0.00%) 125.40
ftp 30268 ( 0.15%) 2589465 ( 0.02%) 85.55
pop3 10706 ( 0.05%) 7138335 ( 0.05%) 666.76
imap 2658 ( 0.01%) 555433 ( 0.00%) 208.97
telnet 1006 ( 0.00%) 69890 ( 0.00%) 69.47
ssh 97371 ( 0.48%) 38124301 ( 0.27%) 391.54
dns 7170 ( 0.04%) 2244450 ( 0.02%) 313.03
bgp 277 ( 0.00%) 67518 ( 0.00%) 243.75
napster 2631 ( 0.01%) 2215491 ( 0.02%) 842.07
realaud 6 ( 0.00%) 366 ( 0.00%) 61.00
rtsp 219637 ( 1.08%) 19587576 ( 0.14%) 89.18
icecast 450 ( 0.00%) 112444 ( 0.00%) 249.88
hotline 12 ( 0.00%) 1430 ( 0.00%) 119.17
other 2643006 ( 13.01%) 1345648480 ( 9.42%) 509.14
udp 2515724 ( 12.38%) 410502398 ( 2.87%) 163.17
dns 1745243 ( 8.59%) 209407367 ( 1.47%) 119.99
realaud 99 ( 0.00%) 10183 ( 0.00%) 102.86
halflif 8 ( 0.00%) 710 ( 0.00%) 88.75
starcra 12 ( 0.00%) 2400 ( 0.00%) 200.00
everque 108 ( 0.00%) 21079 ( 0.00%) 195.18
unreal 16 ( 0.00%) 2112 ( 0.00%) 132.00
quake 21 ( 0.00%) 2023 ( 0.00%) 96.33
cuseeme 7 ( 0.00%) 568 ( 0.00%) 81.14
other 770119 ( 3.79%) 200985358 ( 1.41%) 260.98
icmp 497074 ( 2.45%) 44764796 ( 0.31%) 90.06
ipip 335 ( 0.00%) 40318 ( 0.00%) 120.35
ipsec 673 ( 0.00%) 562238 ( 0.00%) 835.42
ip6 7725 ( 0.04%) 4051411 ( 0.03%) 524.45
other 196082 ( 0.97%) 57543978 ( 0.40%) 293.47
frag 3548 ( 0.02%) 2863786 ( 0.02%) 807.16
ip6 217216 ( 1.07%) 28385919 ( 0.20%) 130.68
tcp6 163914 ( 0.81%) 19037383 ( 0.13%) 116.14
http(s) 725 ( 0.00%) 892510 ( 0.01%) 1231.05
http(c) 15107 ( 0.07%) 1837101 ( 0.01%) 121.61
smtp 618 ( 0.00%) 237590 ( 0.00%) 384.45
ftp 36 ( 0.00%) 2664 ( 0.00%) 74.00
ssh 66 ( 0.00%) 10722 ( 0.00%) 162.45
bgp 95 ( 0.00%) 9268 ( 0.00%) 97.56
other 147267 ( 0.72%) 16047528 ( 0.11%) 108.97
udp6 42520 ( 0.21%) 7989254 ( 0.06%) 187.89
dns 40021 ( 0.20%) 7510908 ( 0.05%) 187.67
everque 6 ( 0.00%) 805 ( 0.00%) 134.17
other 2493 ( 0.01%) 477541 ( 0.00%) 191.55
icmp6 10521 ( 0.05%) 1300841 ( 0.01%) 123.64
ip6 155 ( 0.00%) 22183 ( 0.00%) 143.12
pim6 77 ( 0.00%) 8592 ( 0.00%) 111.58
other6 29 ( 0.00%) 27666 ( 0.00%) 954.00
tcpdump file: 200709241400.dump.gz (525.83 MB)