Traffic Trace Info
DumpFile: 200808021400.dump
FileSize: 1153.79MB
Id: 200808021400
StartTime: Sat Aug 2 14:00:00 2008
EndTime: Sat Aug 2 14:15:00 2008
TotalTime: 899.82 seconds
TotalCapSize: 901.46MB CapLen: 96 bytes
# of packets: 16535844 (11964.94MB)
AvgRate: 111.56Mbps stddev:20.88M
IP flow (unique src/dst pair) Information
# of flows: 499224 (avg. 33.12 pkts/flow)
Top 10 big flow size (bytes/total in %):
5.7% 2.7% 1.7% 1.3% 1.1% 1.0% 0.8% 0.8% 0.8% 0.8%
IP address Information
# of IPv4 addresses: 272429
Top 10 bandwidth usage (bytes/total in %):
11.2% 9.2% 5.8% 4.9% 4.8% 3.2% 3.0% 2.9% 2.8% 2.3%
# of IPv6 addresses: 832
Top 10 bandwidth usage (bytes/total in %):
81.5% 81.5% 4.7% 4.7% 2.3% 1.4% 1.4% 1.4% 0.9% 0.9%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](200808021400.pktlen.png)
detailed numbers
[ 32- 63]: 3517230
[ 64- 127]: 3770463
[ 128- 255]: 689126
[ 256- 511]: 384510
[ 512- 1023]: 371170
[ 1024- 2047]: 7803345
Protocol Breakdown
![[protocol breakdown chart]](200808021400.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 16535844 (100.00%) 12546144357 (100.00%) 758.72
ip 16476399 ( 99.64%) 12518233869 ( 99.78%) 759.77
tcp 14028886 ( 84.84%) 11934200712 ( 95.12%) 850.69
http(s) 6626225 ( 40.07%) 8987218326 ( 71.63%) 1356.31
http(c) 3386081 ( 20.48%) 311265091 ( 2.48%) 91.92
squid 201426 ( 1.22%) 111188696 ( 0.89%) 552.01
smtp 552451 ( 3.34%) 105337363 ( 0.84%) 190.67
nntp 94 ( 0.00%) 9324 ( 0.00%) 99.19
ftp 364009 ( 2.20%) 272464399 ( 2.17%) 748.51
pop3 23544 ( 0.14%) 13677882 ( 0.11%) 580.95
imap 6118 ( 0.04%) 1364329 ( 0.01%) 223.00
telnet 858 ( 0.01%) 81306 ( 0.00%) 94.76
ssh 147872 ( 0.89%) 141682714 ( 1.13%) 958.14
dns 12498 ( 0.08%) 1501717 ( 0.01%) 120.16
bgp 183 ( 0.00%) 51163 ( 0.00%) 279.58
napster 27 ( 0.00%) 3575 ( 0.00%) 132.41
realaud 11 ( 0.00%) 1854 ( 0.00%) 168.55
rtsp 283467 ( 1.71%) 304197649 ( 2.42%) 1073.13
icecast 25876 ( 0.16%) 24432688 ( 0.19%) 944.22
hotline 7 ( 0.00%) 482 ( 0.00%) 68.86
other 2398132 ( 14.50%) 1659721734 ( 13.23%) 692.09
udp 1981445 ( 11.98%) 532030398 ( 4.24%) 268.51
dns 977105 ( 5.91%) 190452503 ( 1.52%) 194.92
rip 1 ( 0.00%) 66 ( 0.00%) 66.00
realaud 9751 ( 0.06%) 2898005 ( 0.02%) 297.20
halflif 22 ( 0.00%) 8882 ( 0.00%) 403.73
starcra 25 ( 0.00%) 3954 ( 0.00%) 158.16
everque 56 ( 0.00%) 9260 ( 0.00%) 165.36
unreal 7 ( 0.00%) 1792 ( 0.00%) 256.00
quake 16 ( 0.00%) 1537 ( 0.00%) 96.06
cuseeme 9 ( 0.00%) 1155 ( 0.00%) 128.33
other 994358 ( 6.01%) 338620343 ( 2.70%) 340.54
icmp 353408 ( 2.14%) 33131622 ( 0.26%) 93.75
ipip 336 ( 0.00%) 40644 ( 0.00%) 120.96
ipsec 2965 ( 0.02%) 397310 ( 0.00%) 134.00
ip6 901 ( 0.01%) 110313 ( 0.00%) 122.43
other 108458 ( 0.66%) 18322870 ( 0.15%) 168.94
frag 59343 ( 0.36%) 51476387 ( 0.41%) 867.44
ip6 59445 ( 0.36%) 27910488 ( 0.22%) 469.52
tcp6 41190 ( 0.25%) 25216739 ( 0.20%) 612.21
http(s) 11 ( 0.00%) 1972 ( 0.00%) 179.27
http(c) 2555 ( 0.02%) 247945 ( 0.00%) 97.04
smtp 226 ( 0.00%) 100285 ( 0.00%) 443.74
ftp 14726 ( 0.09%) 1305708 ( 0.01%) 88.67
pop3 50 ( 0.00%) 5602 ( 0.00%) 112.04
ssh 95 ( 0.00%) 13786 ( 0.00%) 145.12
dns 8 ( 0.00%) 1657 ( 0.00%) 207.12
bgp 1340 ( 0.01%) 110386 ( 0.00%) 82.38
other 22179 ( 0.13%) 23429398 ( 0.19%) 1056.38
udp6 10229 ( 0.06%) 1715638 ( 0.01%) 167.72
dns 10191 ( 0.06%) 1711280 ( 0.01%) 167.92
everque 1 ( 0.00%) 110 ( 0.00%) 110.00
quake 2 ( 0.00%) 232 ( 0.00%) 116.00
other 35 ( 0.00%) 4016 ( 0.00%) 114.74
icmp6 7992 ( 0.05%) 970395 ( 0.01%) 121.42
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
other6 4 ( 0.00%) 3636 ( 0.00%) 909.00
tcpdump file: 200808021400.dump.gz (400.27 MB)