Traffic Trace Info
DumpFile: 200801061400.dump
FileSize: 1011.85MB
Id: 200801061400
StartTime: Sun Jan 6 14:00:01 2008
EndTime: Sun Jan 6 14:15:01 2008
TotalTime: 899.91 seconds
TotalCapSize: 789.91MB CapLen: 96 bytes
# of packets: 14544628 (7438.23MB)
AvgRate: 69.34Mbps stddev:11.29M
IP flow (unique src/dst pair) Information
# of flows: 808435 (avg. 17.99 pkts/flow)
Top 10 big flow size (bytes/total in %):
3.7% 3.0% 2.1% 1.6% 1.6% 1.4% 1.3% 1.3% 1.2% 1.1%
IP address Information
# of IPv4 addresses: 445151
Top 10 bandwidth usage (bytes/total in %):
9.6% 9.0% 5.5% 4.9% 4.8% 3.7% 3.6% 3.1% 2.4% 2.3%
# of IPv6 addresses: 1805
Top 10 bandwidth usage (bytes/total in %):
18.7% 8.2% 8.2% 7.5% 6.8% 6.7% 6.4% 5.1% 4.7% 4.6%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](200801061400.pktlen.png)
detailed numbers
[ 32- 63]: 3295990
[ 64- 127]: 4803351
[ 128- 255]: 1229653
[ 256- 511]: 469867
[ 512- 1023]: 311216
[ 1024- 2047]: 4434551
Protocol Breakdown
![[protocol breakdown chart]](200801061400.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 14544628 (100.00%) 7799551106 (100.00%) 536.25
ip 14525729 ( 99.87%) 7796722864 ( 99.96%) 536.75
tcp 10193695 ( 70.09%) 7157343820 ( 91.77%) 702.13
http(s) 3315947 ( 22.80%) 4495907375 ( 57.64%) 1355.84
http(c) 1951571 ( 13.42%) 195083573 ( 2.50%) 99.96
squid 782545 ( 5.38%) 573406926 ( 7.35%) 732.75
smtp 649633 ( 4.47%) 93138358 ( 1.19%) 143.37
nntp 26 ( 0.00%) 1560 ( 0.00%) 60.00
ftp 29550 ( 0.20%) 3686546 ( 0.05%) 124.76
pop3 10275 ( 0.07%) 7303600 ( 0.09%) 710.81
imap 2356 ( 0.02%) 508874 ( 0.01%) 215.99
telnet 730 ( 0.01%) 46870 ( 0.00%) 64.21
ssh 59902 ( 0.41%) 8271930 ( 0.11%) 138.09
dns 5658 ( 0.04%) 379061 ( 0.00%) 67.00
bgp 172 ( 0.00%) 39431 ( 0.00%) 229.25
napster 2 ( 0.00%) 132 ( 0.00%) 66.00
realaud 18 ( 0.00%) 2275 ( 0.00%) 126.39
rtsp 25998 ( 0.18%) 33877766 ( 0.43%) 1303.09
icecast 136 ( 0.00%) 9018 ( 0.00%) 66.31
hotline 9 ( 0.00%) 540 ( 0.00%) 60.00
other 3359155 ( 23.10%) 1745679265 ( 22.38%) 519.68
udp 2762343 ( 18.99%) 500935076 ( 6.42%) 181.34
dns 1346801 ( 9.26%) 157880590 ( 2.02%) 117.23
realaud 34 ( 0.00%) 6527 ( 0.00%) 191.97
halflif 31 ( 0.00%) 3167 ( 0.00%) 102.16
starcra 20 ( 0.00%) 3741 ( 0.00%) 187.05
everque 46 ( 0.00%) 9108 ( 0.00%) 198.00
unreal 23 ( 0.00%) 3999 ( 0.00%) 173.87
quake 23 ( 0.00%) 2567 ( 0.00%) 111.61
cuseeme 12 ( 0.00%) 2291 ( 0.00%) 190.92
other 1415351 ( 9.73%) 343022966 ( 4.40%) 242.36
icmp 1561194 ( 10.73%) 135786823 ( 1.74%) 86.98
ipip 370 ( 0.00%) 44888 ( 0.00%) 121.32
ipsec 1679 ( 0.01%) 1661770 ( 0.02%) 989.74
ip6 851 ( 0.01%) 103434 ( 0.00%) 121.54
other 5597 ( 0.04%) 847053 ( 0.01%) 151.34
frag 916 ( 0.01%) 770335 ( 0.01%) 840.98
ip6 18899 ( 0.13%) 2828242 ( 0.04%) 149.65
tcp6 2958 ( 0.02%) 427946 ( 0.01%) 144.67
http(s) 129 ( 0.00%) 106425 ( 0.00%) 825.00
http(c) 67 ( 0.00%) 8788 ( 0.00%) 131.16
smtp 84 ( 0.00%) 17999 ( 0.00%) 214.27
ssh 29 ( 0.00%) 7702 ( 0.00%) 265.59
dns 7 ( 0.00%) 635 ( 0.00%) 90.71
bgp 66 ( 0.00%) 7115 ( 0.00%) 107.80
other 2576 ( 0.02%) 279282 ( 0.00%) 108.42
udp6 8890 ( 0.06%) 1584137 ( 0.02%) 178.19
dns 7137 ( 0.05%) 1332387 ( 0.02%) 186.69
other 1753 ( 0.01%) 251750 ( 0.00%) 143.61
icmp6 7021 ( 0.05%) 812079 ( 0.01%) 115.66
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
tcpdump file: 200801061400.dump.gz (347.36 MB)