Traffic Trace Info
DumpFile: 200709281400.dump
FileSize: 1923.35MB
Id: 200709281400
StartTime: Fri Sep 28 14:00:00 2007
EndTime: Fri Sep 28 14:15:01 2007
TotalTime: 900.55 seconds
TotalCapSize: 1503.56MB CapLen: 96 bytes
# of packets: 27506735 (15770.19MB)
AvgRate: 146.90Mbps stddev:19.53M
IP flow (unique src/dst pair) Information
# of flows: 880035 (avg. 31.26 pkts/flow)
Top 10 big flow size (bytes/total in %):
3.5% 1.2% 0.9% 0.9% 0.9% 0.7% 0.7% 0.7% 0.7% 0.6%
IP address Information
# of IPv4 addresses: 459474
Top 10 bandwidth usage (bytes/total in %):
9.3% 9.2% 7.4% 4.9% 3.6% 3.6% 2.6% 1.6% 1.2% 1.2%
# of IPv6 addresses: 2922
Top 10 bandwidth usage (bytes/total in %):
20.3% 20.3% 14.6% 6.3% 5.9% 5.1% 4.2% 3.8% 3.2% 3.1%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](200709281400.pktlen.png)
detailed numbers
[ 32- 63]: 8183961
[ 64- 127]: 7275849
[ 128- 255]: 880604
[ 256- 511]: 623907
[ 512- 1023]: 656777
[ 1024- 2047]: 9885637
Protocol Breakdown
![[protocol breakdown chart]](200709281400.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 27506735 (100.00%) 16536244214 (100.00%) 601.17
ip 27405617 ( 99.63%) 16515108329 ( 99.87%) 602.62
tcp 21896780 ( 79.61%) 15825541123 ( 95.70%) 722.73
http(s) 9490905 ( 34.50%) 12939387382 ( 78.25%) 1363.35
http(c) 8181105 ( 29.74%) 1008059223 ( 6.10%) 123.22
squid 567279 ( 2.06%) 461021147 ( 2.79%) 812.69
smtp 572176 ( 2.08%) 149063781 ( 0.90%) 260.52
nntp 1 ( 0.00%) 62 ( 0.00%) 62.00
ftp 15298 ( 0.06%) 1403148 ( 0.01%) 91.72
pop3 20689 ( 0.08%) 10111956 ( 0.06%) 488.76
imap 6183 ( 0.02%) 2220357 ( 0.01%) 359.11
telnet 481 ( 0.00%) 38084 ( 0.00%) 79.18
ssh 496376 ( 1.80%) 91589182 ( 0.55%) 184.52
dns 4344 ( 0.02%) 314851 ( 0.00%) 72.48
bgp 281 ( 0.00%) 82353 ( 0.00%) 293.07
napster 16 ( 0.00%) 2098 ( 0.00%) 131.12
realaud 193 ( 0.00%) 38617 ( 0.00%) 200.09
rtsp 220073 ( 0.80%) 67486404 ( 0.41%) 306.65
icecast 20842 ( 0.08%) 15782954 ( 0.10%) 757.27
hotline 2 ( 0.00%) 126 ( 0.00%) 63.00
other 2300535 ( 8.36%) 1078939338 ( 6.52%) 468.99
udp 4934183 ( 17.94%) 634188433 ( 3.84%) 128.53
dns 1820706 ( 6.62%) 230215416 ( 1.39%) 126.44
realaud 16446 ( 0.06%) 11156947 ( 0.07%) 678.40
halflif 18 ( 0.00%) 2273 ( 0.00%) 126.28
starcra 26 ( 0.00%) 4511 ( 0.00%) 173.50
everque 78 ( 0.00%) 12732 ( 0.00%) 163.23
unreal 8 ( 0.00%) 1108 ( 0.00%) 138.50
quake 25 ( 0.00%) 2370 ( 0.00%) 94.80
cuseeme 9 ( 0.00%) 745 ( 0.00%) 82.78
other 3096761 ( 11.26%) 392767688 ( 2.38%) 126.83
icmp 565513 ( 2.06%) 51077351 ( 0.31%) 90.32
ipip 338 ( 0.00%) 40948 ( 0.00%) 121.15
ipsec 180 ( 0.00%) 19800 ( 0.00%) 110.00
ip6 7670 ( 0.03%) 4079874 ( 0.02%) 531.93
other 953 ( 0.00%) 160800 ( 0.00%) 168.73
frag 3798 ( 0.01%) 3760725 ( 0.02%) 990.19
ip6 101118 ( 0.37%) 21135885 ( 0.13%) 209.02
tcp6 45581 ( 0.17%) 11282152 ( 0.07%) 247.52
http(s) 1707 ( 0.01%) 1869986 ( 0.01%) 1095.48
http(c) 28706 ( 0.10%) 3437396 ( 0.02%) 119.74
smtp 1203 ( 0.00%) 356647 ( 0.00%) 296.46
ftp 142 ( 0.00%) 12739 ( 0.00%) 89.71
ssh 66 ( 0.00%) 10722 ( 0.00%) 162.45
dns 20 ( 0.00%) 2930 ( 0.00%) 146.50
bgp 122 ( 0.00%) 11281 ( 0.00%) 92.47
other 13615 ( 0.05%) 5580451 ( 0.03%) 409.88
udp6 45752 ( 0.17%) 8615186 ( 0.05%) 188.30
dns 42515 ( 0.15%) 7842501 ( 0.05%) 184.46
starcra 46 ( 0.00%) 12537 ( 0.00%) 272.54
everque 30 ( 0.00%) 4461 ( 0.00%) 148.70
other 3161 ( 0.01%) 755687 ( 0.00%) 239.07
icmp6 9522 ( 0.03%) 1182976 ( 0.01%) 124.24
ip6 156 ( 0.00%) 22301 ( 0.00%) 142.96
pim6 81 ( 0.00%) 8976 ( 0.00%) 110.81
other6 26 ( 0.00%) 24294 ( 0.00%) 934.38
tcpdump file: 200709281400.dump.gz (688.94 MB)