Traffic Trace Info
DumpFile: 200808071400.dump
FileSize: 1638.90MB
Id: 200808071400
StartTime: Thu Aug 7 14:00:01 2008
EndTime: Thu Aug 7 14:15:00 2008
TotalTime: 899.66 seconds
TotalCapSize: 1278.42MB CapLen: 96 bytes
# of packets: 23623100 (15208.60MB)
AvgRate: 141.80Mbps stddev:15.85M
IP flow (unique src/dst pair) Information
# of flows: 685797 (avg. 34.45 pkts/flow)
Top 10 big flow size (bytes/total in %):
6.6% 1.0% 1.0% 0.9% 0.9% 0.8% 0.7% 0.7% 0.7% 0.6%
IP address Information
# of IPv4 addresses: 375293
Top 10 bandwidth usage (bytes/total in %):
11.2% 9.8% 6.8% 6.8% 3.5% 3.1% 2.7% 2.5% 2.4% 2.2%
# of IPv6 addresses: 896
Top 10 bandwidth usage (bytes/total in %):
15.2% 12.5% 11.7% 9.8% 9.2% 7.5% 5.9% 4.7% 3.9% 3.5%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](200808071400.pktlen.png)
detailed numbers
[ 32- 63]: 5757747
[ 64- 127]: 5566010
[ 128- 255]: 1236289
[ 256- 511]: 599382
[ 512- 1023]: 665631
[ 1024- 2047]: 9798041
Protocol Breakdown
![[protocol breakdown chart]](200808071400.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 23623100 (100.00%) 15947372400 (100.00%) 675.08
ip 23578628 ( 99.81%) 15940930147 ( 99.96%) 676.08
tcp 19980754 ( 84.58%) 15064245097 ( 94.46%) 753.94
http(s) 8488801 ( 35.93%) 11057552719 ( 69.34%) 1302.60
http(c) 4796066 ( 20.30%) 454898223 ( 2.85%) 94.85
squid 335917 ( 1.42%) 116939128 ( 0.73%) 348.12
smtp 779788 ( 3.30%) 196992750 ( 1.24%) 252.62
nntp 26 ( 0.00%) 3006 ( 0.00%) 115.62
ftp 244891 ( 1.04%) 143553960 ( 0.90%) 586.20
pop3 26843 ( 0.11%) 14978938 ( 0.09%) 558.02
imap 5627 ( 0.02%) 969508 ( 0.01%) 172.30
telnet 9477 ( 0.04%) 745082 ( 0.00%) 78.62
ssh 1399901 ( 5.93%) 203519324 ( 1.28%) 145.38
dns 3607 ( 0.02%) 277262 ( 0.00%) 76.87
bgp 211 ( 0.00%) 72084 ( 0.00%) 341.63
napster 229 ( 0.00%) 17589 ( 0.00%) 76.81
realaud 19 ( 0.00%) 1566 ( 0.00%) 82.42
rtsp 687858 ( 2.91%) 692482952 ( 4.34%) 1006.72
icecast 1263992 ( 5.35%) 1103089094 ( 6.92%) 872.70
other 1937500 ( 8.20%) 1078151852 ( 6.76%) 556.47
udp 2660614 ( 11.26%) 782122377 ( 4.90%) 293.96
dns 1291763 ( 5.47%) 229361141 ( 1.44%) 177.56
realaud 19833 ( 0.08%) 8372827 ( 0.05%) 422.17
halflif 43 ( 0.00%) 6795 ( 0.00%) 158.02
starcra 38 ( 0.00%) 6855 ( 0.00%) 180.39
everque 77 ( 0.00%) 8933 ( 0.00%) 116.01
unreal 35 ( 0.00%) 6827 ( 0.00%) 195.06
quake 43 ( 0.00%) 7056 ( 0.00%) 164.09
cuseeme 7 ( 0.00%) 919 ( 0.00%) 131.29
other 1348737 ( 5.71%) 544337974 ( 3.41%) 403.59
icmp 858570 ( 3.63%) 78226563 ( 0.49%) 91.11
ipip 303 ( 0.00%) 35450 ( 0.00%) 117.00
ipsec 4978 ( 0.02%) 910212 ( 0.01%) 182.85
ip6 925 ( 0.00%) 112918 ( 0.00%) 122.07
other 72484 ( 0.31%) 15277530 ( 0.10%) 210.77
frag 11755 ( 0.05%) 8979545 ( 0.06%) 763.89
ip6 44472 ( 0.19%) 6442253 ( 0.04%) 144.86
tcp6 26612 ( 0.11%) 3465186 ( 0.02%) 130.21
http(s) 201 ( 0.00%) 275762 ( 0.00%) 1371.95
http(c) 12704 ( 0.05%) 1889621 ( 0.01%) 148.74
smtp 596 ( 0.00%) 183082 ( 0.00%) 307.18
ftp 3 ( 0.00%) 258 ( 0.00%) 86.00
pop3 85 ( 0.00%) 8630 ( 0.00%) 101.53
ssh 1229 ( 0.01%) 142926 ( 0.00%) 116.29
dns 8 ( 0.00%) 1010 ( 0.00%) 126.25
bgp 842 ( 0.00%) 73369 ( 0.00%) 87.14
rtsp 7478 ( 0.03%) 558652 ( 0.00%) 74.71
other 3466 ( 0.01%) 331876 ( 0.00%) 95.75
udp6 12789 ( 0.05%) 2284408 ( 0.01%) 178.62
dns 12772 ( 0.05%) 2282538 ( 0.01%) 178.71
other 17 ( 0.00%) 1870 ( 0.00%) 110.00
icmp6 5027 ( 0.02%) 677823 ( 0.00%) 134.84
pim6 31 ( 0.00%) 4216 ( 0.00%) 136.00
other6 13 ( 0.00%) 10620 ( 0.00%) 816.92
tcpdump file: 200808071400.dump.gz (589.97 MB)