Traffic Trace Info
DumpFile: 200806201400.dump
FileSize: 1733.01MB
Id: 200806201400
StartTime: Fri Jun 20 14:00:01 2008
EndTime: Fri Jun 20 14:15:01 2008
TotalTime: 899.80 seconds
TotalCapSize: 1350.37MB CapLen: 96 bytes
# of packets: 25073048 (17133.81MB)
AvgRate: 159.73Mbps stddev:25.28M
IP flow (unique src/dst pair) Information
# of flows: 683927 (avg. 36.66 pkts/flow)
Top 10 big flow size (bytes/total in %):
4.0% 2.0% 1.9% 1.3% 0.9% 0.8% 0.8% 0.7% 0.7% 0.7%
IP address Information
# of IPv4 addresses: 340154
Top 10 bandwidth usage (bytes/total in %):
5.7% 5.4% 5.0% 4.1% 4.1% 3.4% 2.5% 2.4% 2.3% 2.3%
# of IPv6 addresses: 762
Top 10 bandwidth usage (bytes/total in %):
15.7% 15.7% 8.0% 5.8% 5.5% 5.5% 5.3% 4.8% 4.2% 4.0%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](200806201400.pktlen.png)
detailed numbers
[ 32- 63]: 5592618
[ 64- 127]: 6059669
[ 128- 255]: 876658
[ 256- 511]: 680389
[ 512- 1023]: 705004
[ 1024- 2047]: 11158710
Protocol Breakdown
![[protocol breakdown chart]](200806201400.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 25073048 (100.00%) 17966102946 (100.00%) 716.55
ip 25051442 ( 99.91%) 17962000195 ( 99.98%) 717.00
tcp 19961624 ( 79.61%) 15690063366 ( 87.33%) 786.01
http(s) 8999732 ( 35.89%) 11878448365 ( 66.12%) 1319.87
http(c) 5662005 ( 22.58%) 622670886 ( 3.47%) 109.97
squid 556077 ( 2.22%) 305537426 ( 1.70%) 549.45
smtp 560658 ( 2.24%) 127453839 ( 0.71%) 227.33
nntp 52 ( 0.00%) 4679 ( 0.00%) 89.98
ftp 478730 ( 1.91%) 422036735 ( 2.35%) 881.58
pop3 16435 ( 0.07%) 8176134 ( 0.05%) 497.48
imap 6471 ( 0.03%) 2987376 ( 0.02%) 461.66
telnet 1455 ( 0.01%) 131716 ( 0.00%) 90.53
ssh 88912 ( 0.35%) 75810874 ( 0.42%) 852.65
dns 3389 ( 0.01%) 282657 ( 0.00%) 83.40
bgp 199 ( 0.00%) 61467 ( 0.00%) 308.88
napster 16 ( 0.00%) 1189 ( 0.00%) 74.31
realaud 156 ( 0.00%) 13771 ( 0.00%) 88.28
rtsp 262080 ( 1.05%) 233771591 ( 1.30%) 891.99
icecast 49625 ( 0.20%) 32285439 ( 0.18%) 650.59
hotline 27 ( 0.00%) 1754 ( 0.00%) 64.96
other 3275593 ( 13.06%) 1980386748 ( 11.02%) 604.59
udp 4428398 ( 17.66%) 2191696164 ( 12.20%) 494.92
dns 1116823 ( 4.45%) 179786130 ( 1.00%) 160.98
realaud 42341 ( 0.17%) 23142357 ( 0.13%) 546.57
halflif 26 ( 0.00%) 2618 ( 0.00%) 100.69
starcra 45 ( 0.00%) 7634 ( 0.00%) 169.64
everque 2057 ( 0.01%) 319544 ( 0.00%) 155.34
unreal 13 ( 0.00%) 2454 ( 0.00%) 188.77
quake 14 ( 0.00%) 1269 ( 0.00%) 90.64
cuseeme 2 ( 0.00%) 197 ( 0.00%) 98.50
other 3266907 ( 13.03%) 1988371169 ( 11.07%) 608.64
icmp 416447 ( 1.66%) 36532252 ( 0.20%) 87.72
ipip 321 ( 0.00%) 38852 ( 0.00%) 121.03
ipsec 24728 ( 0.10%) 7059706 ( 0.04%) 285.49
ip6 1907 ( 0.01%) 543122 ( 0.00%) 284.80
other 218017 ( 0.87%) 36066733 ( 0.20%) 165.43
frag 4982 ( 0.02%) 3859788 ( 0.02%) 774.75
ip6 21604 ( 0.09%) 4102631 ( 0.02%) 189.90
tcp6 4798 ( 0.02%) 1256279 ( 0.01%) 261.83
http(s) 628 ( 0.00%) 753038 ( 0.00%) 1199.11
http(c) 1235 ( 0.00%) 129293 ( 0.00%) 104.69
smtp 222 ( 0.00%) 64572 ( 0.00%) 290.86
ssh 293 ( 0.00%) 59546 ( 0.00%) 203.23
dns 7 ( 0.00%) 635 ( 0.00%) 90.71
bgp 69 ( 0.00%) 7440 ( 0.00%) 107.83
other 2344 ( 0.01%) 241755 ( 0.00%) 103.14
udp6 12554 ( 0.05%) 2270379 ( 0.01%) 180.85
dns 12539 ( 0.05%) 2268729 ( 0.01%) 180.93
other 15 ( 0.00%) 1650 ( 0.00%) 110.00
icmp6 4219 ( 0.02%) 569926 ( 0.00%) 135.09
pim6 31 ( 0.00%) 4216 ( 0.00%) 136.00
other6 2 ( 0.00%) 1831 ( 0.00%) 915.50
tcpdump file: 200806201400.dump.gz (608.90 MB)