Traffic Trace Info
DumpFile: 200711081400.dump
FileSize: 2060.34MB
Id: 200711081400
StartTime: Thu Nov 8 14:00:01 2007
EndTime: Thu Nov 8 14:15:01 2007
TotalTime: 900.13 seconds
TotalCapSize: 1614.73MB CapLen: 96 bytes
# of packets: 29198970 (17906.54MB)
AvgRate: 166.86Mbps stddev:24.97M
IP flow (unique src/dst pair) Information
# of flows: 698549 (avg. 41.80 pkts/flow)
Top 10 big flow size (bytes/total in %):
1.6% 1.2% 1.0% 0.7% 0.7% 0.7% 0.7% 0.6% 0.5% 0.5%
IP address Information
# of IPv4 addresses: 366090
Top 10 bandwidth usage (bytes/total in %):
15.9% 5.2% 4.3% 2.9% 2.8% 2.7% 2.6% 2.0% 1.7% 1.7%
# of IPv6 addresses: 1761
Top 10 bandwidth usage (bytes/total in %):
40.6% 40.2% 5.8% 5.1% 4.3% 4.2% 3.6% 3.6% 3.1% 2.8%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](200711081400.pktlen.png)
detailed numbers
[ 32- 63]: 6594144
[ 64- 127]: 8451864
[ 128- 255]: 1094732
[ 256- 511]: 666059
[ 512- 1023]: 1033266
[ 1024- 2047]: 11358905
Protocol Breakdown
![[protocol breakdown chart]](200711081400.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 29198970 (100.00%) 18776364647 (100.00%) 643.05
ip 29161154 ( 99.87%) 18767027147 ( 99.95%) 643.56
tcp 24745280 ( 84.75%) 17388807439 ( 92.61%) 702.71
http(s) 9768890 ( 33.46%) 13002333721 ( 69.25%) 1330.99
http(c) 7107957 ( 24.34%) 857962839 ( 4.57%) 120.70
squid 549590 ( 1.88%) 366532010 ( 1.95%) 666.92
smtp 669567 ( 2.29%) 138980056 ( 0.74%) 207.57
ftp 672959 ( 2.30%) 58005215 ( 0.31%) 86.19
pop3 18617 ( 0.06%) 9821687 ( 0.05%) 527.57
imap 25440 ( 0.09%) 21458606 ( 0.11%) 843.50
telnet 173 ( 0.00%) 56152 ( 0.00%) 324.58
ssh 2223360 ( 7.61%) 422301391 ( 2.25%) 189.94
dns 2189 ( 0.01%) 160385 ( 0.00%) 73.27
bgp 279 ( 0.00%) 86303 ( 0.00%) 309.33
napster 71 ( 0.00%) 42934 ( 0.00%) 604.70
realaud 383 ( 0.00%) 124968 ( 0.00%) 326.29
rtsp 328677 ( 1.13%) 223692777 ( 1.19%) 680.59
icecast 15230 ( 0.05%) 8848627 ( 0.05%) 581.00
hotline 43 ( 0.00%) 3140 ( 0.00%) 73.02
other 3361846 ( 11.51%) 2278396088 ( 12.13%) 677.72
udp 3404727 ( 11.66%) 1284367015 ( 6.84%) 377.23
dns 1682865 ( 5.76%) 226255402 ( 1.21%) 134.45
realaud 35290 ( 0.12%) 14074451 ( 0.07%) 398.82
halflif 9 ( 0.00%) 740 ( 0.00%) 82.22
starcra 15 ( 0.00%) 2910 ( 0.00%) 194.00
everque 70 ( 0.00%) 11703 ( 0.00%) 167.19
unreal 7 ( 0.00%) 912 ( 0.00%) 130.29
quake 16 ( 0.00%) 2097 ( 0.00%) 131.06
cuseeme 2 ( 0.00%) 174 ( 0.00%) 87.00
other 1686325 ( 5.78%) 1044010163 ( 5.56%) 619.10
icmp 913985 ( 3.13%) 70962875 ( 0.38%) 77.64
ipip 342 ( 0.00%) 40992 ( 0.00%) 119.86
ipsec 1776 ( 0.01%) 1835210 ( 0.01%) 1033.34
ip6 7089 ( 0.02%) 3955470 ( 0.02%) 557.97
other 87955 ( 0.30%) 17058146 ( 0.09%) 193.94
frag 2490 ( 0.01%) 1897880 ( 0.01%) 762.20
ip6 37816 ( 0.13%) 9337500 ( 0.05%) 246.92
tcp6 11066 ( 0.04%) 5427956 ( 0.03%) 490.51
http(s) 615 ( 0.00%) 463534 ( 0.00%) 753.71
http(c) 355 ( 0.00%) 35670 ( 0.00%) 100.48
squid 214 ( 0.00%) 198939 ( 0.00%) 929.62
smtp 1045 ( 0.00%) 321978 ( 0.00%) 308.11
ftp 48 ( 0.00%) 4347 ( 0.00%) 90.56
pop3 34 ( 0.00%) 3128 ( 0.00%) 92.00
telnet 92 ( 0.00%) 6981 ( 0.00%) 75.88
ssh 50 ( 0.00%) 9232 ( 0.00%) 184.64
dns 11 ( 0.00%) 970 ( 0.00%) 88.18
bgp 122 ( 0.00%) 17092 ( 0.00%) 140.10
other 8480 ( 0.03%) 4366085 ( 0.02%) 514.87
udp6 19654 ( 0.07%) 3066125 ( 0.02%) 156.01
dns 18846 ( 0.06%) 2942477 ( 0.02%) 156.13
other 808 ( 0.00%) 123648 ( 0.00%) 153.03
icmp6 7062 ( 0.02%) 836212 ( 0.00%) 118.41
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
other6 4 ( 0.00%) 3127 ( 0.00%) 781.75
tcpdump file: 200711081400.dump.gz (767.16 MB)