Traffic Trace Info
DumpFile: 200804151400.dump
FileSize: 1708.58MB
Id: 200804151400
StartTime: Tue Apr 15 14:00:01 2008
EndTime: Tue Apr 15 14:15:00 2008
TotalTime: 899.19 seconds
TotalCapSize: 1336.91MB CapLen: 96 bytes
# of packets: 24357254 (16826.65MB)
AvgRate: 156.99Mbps stddev:28.09M
IP flow (unique src/dst pair) Information
# of flows: 982445 (avg. 24.79 pkts/flow)
Top 10 big flow size (bytes/total in %):
5.7% 5.5% 2.7% 1.7% 1.6% 1.4% 1.2% 1.1% 1.0% 0.8%
IP address Information
# of IPv4 addresses: 514821
Top 10 bandwidth usage (bytes/total in %):
5.7% 5.7% 5.6% 5.6% 4.4% 3.3% 3.0% 2.8% 2.1% 2.0%
# of IPv6 addresses: 1520
Top 10 bandwidth usage (bytes/total in %):
66.0% 66.0% 5.9% 5.4% 3.3% 3.0% 2.3% 2.2% 2.1% 1.7%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](200804151400.pktlen.png)
detailed numbers
[ 32- 63]: 5201338
[ 64- 127]: 5434869
[ 128- 255]: 1058138
[ 256- 511]: 1211026
[ 512- 1023]: 909121
[ 1024- 2047]: 10542762
Protocol Breakdown
![[protocol breakdown chart]](200804151400.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 24357254 (100.00%) 17644025366 (100.00%) 724.38
ip 24200665 ( 99.36%) 17629079896 ( 99.92%) 728.45
tcp 20399546 ( 83.75%) 16815148168 ( 95.30%) 824.29
http(s) 8806963 ( 36.16%) 11271439760 ( 63.88%) 1279.83
http(c) 4142527 ( 17.01%) 551482141 ( 3.13%) 133.13
squid 798649 ( 3.28%) 338195840 ( 1.92%) 423.46
smtp 906841 ( 3.72%) 197301158 ( 1.12%) 217.57
nntp 50 ( 0.00%) 10827 ( 0.00%) 216.54
ftp 73122 ( 0.30%) 31952985 ( 0.18%) 436.98
pop3 14913 ( 0.06%) 5980536 ( 0.03%) 401.03
imap 11958 ( 0.05%) 3170681 ( 0.02%) 265.15
telnet 2832 ( 0.01%) 457925 ( 0.00%) 161.70
ssh 517691 ( 2.13%) 491497527 ( 2.79%) 949.40
dns 13928 ( 0.06%) 3585823 ( 0.02%) 257.45
bgp 184 ( 0.00%) 49339 ( 0.00%) 268.15
napster 23 ( 0.00%) 3747 ( 0.00%) 162.91
realaud 21 ( 0.00%) 4300 ( 0.00%) 204.76
rtsp 598877 ( 2.46%) 618874724 ( 3.51%) 1033.39
icecast 34830 ( 0.14%) 23640606 ( 0.13%) 678.74
hotline 10 ( 0.00%) 1829 ( 0.00%) 182.90
other 4476122 ( 18.38%) 3277498120 ( 18.58%) 732.22
udp 2952499 ( 12.12%) 728322509 ( 4.13%) 246.68
dns 1657583 ( 6.81%) 370935232 ( 2.10%) 223.78
realaud 1072 ( 0.00%) 66274 ( 0.00%) 61.82
halflif 281 ( 0.00%) 19033 ( 0.00%) 67.73
starcra 53 ( 0.00%) 10542 ( 0.00%) 198.91
everque 125 ( 0.00%) 16556 ( 0.00%) 132.45
unreal 37 ( 0.00%) 7360 ( 0.00%) 198.92
quake 301 ( 0.00%) 67383 ( 0.00%) 223.86
cuseeme 1 ( 0.00%) 93 ( 0.00%) 93.00
other 1292988 ( 5.31%) 357172004 ( 2.02%) 276.24
icmp 742766 ( 3.05%) 65078638 ( 0.37%) 87.62
ipip 336 ( 0.00%) 40184 ( 0.00%) 119.60
ipsec 2187 ( 0.01%) 550370 ( 0.00%) 251.66
ip6 672 ( 0.00%) 86728 ( 0.00%) 129.06
other 102659 ( 0.42%) 19853299 ( 0.11%) 193.39
frag 1662 ( 0.01%) 1414590 ( 0.01%) 851.14
ip6 156589 ( 0.64%) 14945470 ( 0.08%) 95.44
tcp6 136937 ( 0.56%) 11290884 ( 0.06%) 82.45
http(s) 833 ( 0.00%) 1035189 ( 0.01%) 1242.72
http(c) 134344 ( 0.55%) 9965164 ( 0.06%) 74.18
smtp 554 ( 0.00%) 142323 ( 0.00%) 256.90
ftp 18 ( 0.00%) 2143 ( 0.00%) 119.06
pop3 33 ( 0.00%) 2850 ( 0.00%) 86.36
ssh 30 ( 0.00%) 3000 ( 0.00%) 100.00
dns 27 ( 0.00%) 3003 ( 0.00%) 111.22
bgp 76 ( 0.00%) 8648 ( 0.00%) 113.79
other 1022 ( 0.00%) 128564 ( 0.00%) 125.80
udp6 15150 ( 0.06%) 3097858 ( 0.02%) 204.48
dns 13673 ( 0.06%) 2779953 ( 0.02%) 203.32
other 1477 ( 0.01%) 317905 ( 0.00%) 215.24
icmp6 4471 ( 0.02%) 552190 ( 0.00%) 123.50
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
other6 1 ( 0.00%) 458 ( 0.00%) 458.00
tcpdump file: 200804151400.dump.gz (599.03 MB)