Traffic Trace Info
DumpFile: 200805101400.dump
FileSize: 1315.67MB
Id: 200805101400
StartTime: Sat May 10 14:00:00 2008
EndTime: Sat May 10 14:15:01 2008
TotalTime: 900.51 seconds
TotalCapSize: 1028.36MB CapLen: 96 bytes
# of packets: 18828152 (12137.33MB)
AvgRate: 113.07Mbps stddev:17.25M
IP flow (unique src/dst pair) Information
# of flows: 648652 (avg. 29.03 pkts/flow)
Top 10 big flow size (bytes/total in %):
5.9% 5.4% 1.9% 1.2% 1.2% 1.0% 0.9% 0.9% 0.8% 0.8%
IP address Information
# of IPv4 addresses: 330695
Top 10 bandwidth usage (bytes/total in %):
6.8% 6.1% 5.5% 5.5% 5.0% 3.0% 2.9% 2.8% 2.6% 2.5%
# of IPv6 addresses: 1543
Top 10 bandwidth usage (bytes/total in %):
29.2% 29.1% 10.3% 7.0% 6.9% 5.3% 4.7% 4.7% 4.3% 3.7%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](200805101400.pktlen.png)
detailed numbers
[ 32- 63]: 3730047
[ 64- 127]: 5145376
[ 128- 255]: 892361
[ 256- 511]: 663557
[ 512- 1023]: 817867
[ 1024- 2047]: 7578944
Protocol Breakdown
![[protocol breakdown chart]](200805101400.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 18828152 (100.00%) 12726911695 (100.00%) 675.95
ip 18809333 ( 99.90%) 12722024407 ( 99.96%) 676.37
tcp 15046100 ( 79.91%) 11321926140 ( 88.96%) 752.48
http(s) 6587403 ( 34.99%) 8803163479 ( 69.17%) 1336.36
http(c) 3613870 ( 19.19%) 417265575 ( 3.28%) 115.46
squid 566121 ( 3.01%) 245396618 ( 1.93%) 433.47
smtp 526165 ( 2.79%) 108506992 ( 0.85%) 206.22
nntp 14 ( 0.00%) 1630 ( 0.00%) 116.43
ftp 28912 ( 0.15%) 3004079 ( 0.02%) 103.90
pop3 7485 ( 0.04%) 2543665 ( 0.02%) 339.84
imap 7120 ( 0.04%) 2471930 ( 0.02%) 347.18
telnet 462 ( 0.00%) 30107 ( 0.00%) 65.17
ssh 265762 ( 1.41%) 29903063 ( 0.23%) 112.52
dns 2636 ( 0.01%) 217807 ( 0.00%) 82.63
bgp 173 ( 0.00%) 46463 ( 0.00%) 268.57
napster 23 ( 0.00%) 4222 ( 0.00%) 183.57
rtsp 257510 ( 1.37%) 289858145 ( 2.28%) 1125.62
icecast 6408 ( 0.03%) 4698742 ( 0.04%) 733.26
hotline 9 ( 0.00%) 1767 ( 0.00%) 196.33
other 3176024 ( 16.87%) 1414811676 ( 11.12%) 445.47
udp 3114084 ( 16.54%) 1333574005 ( 10.48%) 428.24
dns 1290500 ( 6.85%) 332387693 ( 2.61%) 257.57
realaud 1526 ( 0.01%) 92490 ( 0.00%) 60.61
halflif 9 ( 0.00%) 627 ( 0.00%) 69.67
starcra 11 ( 0.00%) 1732 ( 0.00%) 157.45
everque 48 ( 0.00%) 29291 ( 0.00%) 610.23
unreal 10 ( 0.00%) 3423 ( 0.00%) 342.30
quake 8 ( 0.00%) 670 ( 0.00%) 83.75
cuseeme 6 ( 0.00%) 992 ( 0.00%) 165.33
other 1821897 ( 9.68%) 1001046116 ( 7.87%) 549.45
icmp 510630 ( 2.71%) 45599585 ( 0.36%) 89.30
ipip 342 ( 0.00%) 41224 ( 0.00%) 120.54
ipsec 809 ( 0.00%) 108406 ( 0.00%) 134.00
ip6 672 ( 0.00%) 85691 ( 0.00%) 127.52
other 136696 ( 0.73%) 20689356 ( 0.16%) 151.35
frag 3559 ( 0.02%) 2803661 ( 0.02%) 787.77
ip6 18819 ( 0.10%) 4887288 ( 0.04%) 259.70
tcp6 3155 ( 0.02%) 1845343 ( 0.01%) 584.89
http(s) 1117 ( 0.01%) 1574735 ( 0.01%) 1409.79
http(c) 445 ( 0.00%) 45228 ( 0.00%) 101.64
smtp 268 ( 0.00%) 88362 ( 0.00%) 329.71
ftp 35 ( 0.00%) 3102 ( 0.00%) 88.63
ssh 1 ( 0.00%) 86 ( 0.00%) 86.00
bgp 67 ( 0.00%) 7292 ( 0.00%) 108.84
other 1222 ( 0.01%) 126538 ( 0.00%) 103.55
udp6 11415 ( 0.06%) 2488113 ( 0.02%) 217.97
dns 10016 ( 0.05%) 2022177 ( 0.02%) 201.89
starcra 1 ( 0.00%) 137 ( 0.00%) 137.00
other 1398 ( 0.01%) 465799 ( 0.00%) 333.19
icmp6 4217 ( 0.02%) 548171 ( 0.00%) 129.99
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
other6 2 ( 0.00%) 1581 ( 0.00%) 790.50
tcpdump file: 200805101400.dump.gz (458.06 MB)