Traffic Trace Info
DumpFile: 200808161400.dump
FileSize: 1190.02MB
Id: 200808161400
StartTime: Sat Aug 16 14:00:00 2008
EndTime: Sat Aug 16 14:15:00 2008
TotalTime: 900.17 seconds
TotalCapSize: 929.56MB CapLen: 96 bytes
# of packets: 17068951 (12002.02MB)
AvgRate: 111.84Mbps stddev:17.66M
IP flow (unique src/dst pair) Information
# of flows: 519543 (avg. 32.85 pkts/flow)
Top 10 big flow size (bytes/total in %):
3.4% 2.7% 2.1% 1.4% 1.4% 0.9% 0.9% 0.9% 0.9% 0.9%
IP address Information
# of IPv4 addresses: 293546
Top 10 bandwidth usage (bytes/total in %):
14.9% 6.9% 4.9% 4.9% 4.5% 3.6% 3.5% 2.9% 2.8% 2.6%
# of IPv6 addresses: 815
Top 10 bandwidth usage (bytes/total in %):
15.2% 15.2% 13.4% 7.0% 6.6% 6.1% 5.9% 5.9% 4.9% 4.2%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](200808161400.pktlen.png)
detailed numbers
[ 32- 63]: 3556069
[ 64- 127]: 4249933
[ 128- 255]: 649325
[ 256- 511]: 390129
[ 512- 1023]: 367902
[ 1024- 2047]: 7855593
Protocol Breakdown
![[protocol breakdown chart]](200808161400.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 17068951 (100.00%) 12585032117 (100.00%) 737.31
ip 17038361 ( 99.82%) 12581106621 ( 99.97%) 738.40
tcp 13898169 ( 81.42%) 11803988110 ( 93.79%) 849.32
http(s) 7000650 ( 41.01%) 9657917436 ( 76.74%) 1379.57
http(c) 3998437 ( 23.43%) 351857683 ( 2.80%) 88.00
squid 331379 ( 1.94%) 203605273 ( 1.62%) 614.42
smtp 466981 ( 2.74%) 71679340 ( 0.57%) 153.50
nntp 107 ( 0.00%) 22261 ( 0.00%) 208.05
ftp 60879 ( 0.36%) 6310097 ( 0.05%) 103.65
pop3 9015 ( 0.05%) 2658358 ( 0.02%) 294.88
imap 1732 ( 0.01%) 250649 ( 0.00%) 144.72
telnet 919 ( 0.01%) 55952 ( 0.00%) 60.88
ssh 21919 ( 0.13%) 5953380 ( 0.05%) 271.61
dns 2450 ( 0.01%) 216465 ( 0.00%) 88.35
bgp 141 ( 0.00%) 49468 ( 0.00%) 350.84
napster 13 ( 0.00%) 1452 ( 0.00%) 111.69
realaud 52 ( 0.00%) 5222 ( 0.00%) 100.42
rtsp 36878 ( 0.22%) 51946556 ( 0.41%) 1408.61
icecast 8149 ( 0.05%) 4130121 ( 0.03%) 506.83
hotline 12 ( 0.00%) 1392 ( 0.00%) 116.00
other 1958455 ( 11.47%) 1447326945 ( 11.50%) 739.01
udp 1935179 ( 11.34%) 670409191 ( 5.33%) 346.43
dns 968018 ( 5.67%) 178003695 ( 1.41%) 183.88
realaud 1823 ( 0.01%) 297854 ( 0.00%) 163.39
halflif 11 ( 0.00%) 944 ( 0.00%) 85.82
starcra 15 ( 0.00%) 2155 ( 0.00%) 143.67
everque 50 ( 0.00%) 7442 ( 0.00%) 148.84
unreal 3 ( 0.00%) 287 ( 0.00%) 95.67
quake 34 ( 0.00%) 4005 ( 0.00%) 117.79
cuseeme 5 ( 0.00%) 409 ( 0.00%) 81.80
other 965196 ( 5.65%) 492080511 ( 3.91%) 509.82
icmp 1126811 ( 6.60%) 95389994 ( 0.76%) 84.65
ipip 312 ( 0.00%) 39386 ( 0.00%) 126.24
ipsec 2969 ( 0.02%) 397846 ( 0.00%) 134.00
ip6 1052 ( 0.01%) 128899 ( 0.00%) 122.53
other 73869 ( 0.43%) 10753195 ( 0.09%) 145.57
frag 1378 ( 0.01%) 1132931 ( 0.01%) 822.16
ip6 30590 ( 0.18%) 3925496 ( 0.03%) 128.33
tcp6 15066 ( 0.09%) 1459008 ( 0.01%) 96.84
http(c) 4142 ( 0.02%) 440507 ( 0.00%) 106.35
smtp 172 ( 0.00%) 39282 ( 0.00%) 228.38
ftp 6746 ( 0.04%) 598204 ( 0.00%) 88.68
pop3 98 ( 0.00%) 9980 ( 0.00%) 101.84
ssh 16 ( 0.00%) 2596 ( 0.00%) 162.25
bgp 391 ( 0.00%) 34601 ( 0.00%) 88.49
other 3501 ( 0.02%) 333838 ( 0.00%) 95.36
udp6 9229 ( 0.05%) 1648440 ( 0.01%) 178.62
dns 9211 ( 0.05%) 1646460 ( 0.01%) 178.75
other 18 ( 0.00%) 1980 ( 0.00%) 110.00
icmp6 6264 ( 0.04%) 813522 ( 0.01%) 129.87
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
other6 1 ( 0.00%) 446 ( 0.00%) 446.00
tcpdump file: 200808161400.dump.gz (400.60 MB)