Traffic Trace Info
DumpFile: 200804131400.dump
FileSize: 849.16MB
Id: 200804131400
StartTime: Sun Apr 13 14:00:00 2008
EndTime: Sun Apr 13 14:15:00 2008
TotalTime: 899.94 seconds
TotalCapSize: 666.05MB CapLen: 96 bytes
# of packets: 11999580 (6859.94MB)
AvgRate: 63.95Mbps stddev:9.28M
IP flow (unique src/dst pair) Information
# of flows: 587329 (avg. 20.43 pkts/flow)
Top 10 big flow size (bytes/total in %):
5.3% 2.1% 2.0% 1.8% 1.7% 1.7% 1.6% 1.5% 1.4% 1.4%
IP address Information
# of IPv4 addresses: 329076
Top 10 bandwidth usage (bytes/total in %):
7.2% 5.6% 5.4% 4.0% 4.0% 3.8% 3.8% 3.6% 3.4% 2.4%
# of IPv6 addresses: 1471
Top 10 bandwidth usage (bytes/total in %):
10.6% 10.5% 10.3% 10.1% 8.3% 8.1% 8.1% 7.2% 4.8% 4.8%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](200804131400.pktlen.png)
detailed numbers
[ 32- 63]: 2726836
[ 64- 127]: 3255752
[ 128- 255]: 619290
[ 256- 511]: 572371
[ 512- 1023]: 768054
[ 1024- 2047]: 4057277
Protocol Breakdown
![[protocol breakdown chart]](200804131400.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 11999580 (100.00%) 7193166373 (100.00%) 599.45
ip 11983069 ( 99.86%) 7190227954 ( 99.96%) 600.03
tcp 9562486 ( 79.69%) 6606736232 ( 91.85%) 690.90
http(s) 3071788 ( 25.60%) 4084535304 ( 56.78%) 1329.69
http(c) 1769533 ( 14.75%) 184513896 ( 2.57%) 104.27
squid 673150 ( 5.61%) 280726582 ( 3.90%) 417.03
smtp 726694 ( 6.06%) 111856486 ( 1.56%) 153.93
nntp 61 ( 0.00%) 7631 ( 0.00%) 125.10
ftp 129557 ( 1.08%) 97294690 ( 1.35%) 750.98
pop3 6156 ( 0.05%) 2111337 ( 0.03%) 342.97
imap 4178 ( 0.03%) 1132933 ( 0.02%) 271.17
telnet 610 ( 0.01%) 60683 ( 0.00%) 99.48
ssh 572292 ( 4.77%) 489511395 ( 6.81%) 855.35
dns 6764 ( 0.06%) 522414 ( 0.01%) 77.23
bgp 202 ( 0.00%) 61682 ( 0.00%) 305.36
napster 43 ( 0.00%) 10481 ( 0.00%) 243.74
realaud 252 ( 0.00%) 19228 ( 0.00%) 76.30
rtsp 31226 ( 0.26%) 44902398 ( 0.62%) 1437.98
icecast 7787 ( 0.06%) 4710640 ( 0.07%) 604.94
hotline 11 ( 0.00%) 1891 ( 0.00%) 171.91
other 2562178 ( 21.35%) 1304756321 ( 18.14%) 509.24
udp 1993457 ( 16.61%) 543354148 ( 7.55%) 272.57
dns 1238994 ( 10.33%) 291177982 ( 4.05%) 235.01
realaud 4557 ( 0.04%) 275214 ( 0.00%) 60.39
halflif 1254 ( 0.01%) 142584 ( 0.00%) 113.70
starcra 18 ( 0.00%) 2581 ( 0.00%) 143.39
everque 156 ( 0.00%) 18140 ( 0.00%) 116.28
unreal 16 ( 0.00%) 6218 ( 0.00%) 388.62
quake 6 ( 0.00%) 1174 ( 0.00%) 195.67
cuseeme 2 ( 0.00%) 2403 ( 0.00%) 1201.50
other 748423 ( 6.24%) 251704856 ( 3.50%) 336.31
icmp 412287 ( 3.44%) 37227989 ( 0.52%) 90.30
ipip 304 ( 0.00%) 36854 ( 0.00%) 121.23
ipsec 816 ( 0.01%) 109344 ( 0.00%) 134.00
ip6 683 ( 0.01%) 88570 ( 0.00%) 129.68
other 13036 ( 0.11%) 2674817 ( 0.04%) 205.19
frag 1152 ( 0.01%) 959587 ( 0.01%) 832.97
ip6 16511 ( 0.14%) 2938419 ( 0.04%) 177.97
tcp6 1821 ( 0.02%) 261185 ( 0.00%) 143.43
http(s) 1 ( 0.00%) 74 ( 0.00%) 74.00
http(c) 476 ( 0.00%) 50546 ( 0.00%) 106.19
smtp 163 ( 0.00%) 57525 ( 0.00%) 352.91
pop3 33 ( 0.00%) 2850 ( 0.00%) 86.36
dns 7 ( 0.00%) 635 ( 0.00%) 90.71
bgp 73 ( 0.00%) 8422 ( 0.00%) 115.37
other 1068 ( 0.01%) 141133 ( 0.00%) 132.15
udp6 10382 ( 0.09%) 2134099 ( 0.03%) 205.56
dns 8928 ( 0.07%) 1844644 ( 0.03%) 206.61
starcra 1 ( 0.00%) 137 ( 0.00%) 137.00
other 1453 ( 0.01%) 289318 ( 0.00%) 199.12
icmp6 4278 ( 0.04%) 539055 ( 0.01%) 126.01
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
tcpdump file: 200804131400.dump.gz (312.81 MB)