Traffic Trace Info
DumpFile: 200808311400.dump
FileSize: 1034.09MB
Id: 200808311400
StartTime: Sun Aug 31 14:00:00 2008
EndTime: Sun Aug 31 14:15:00 2008
TotalTime: 900.24 seconds
TotalCapSize: 801.58MB CapLen: 96 bytes
# of packets: 15237213 (9609.12MB)
AvgRate: 89.55Mbps stddev:10.55M
IP flow (unique src/dst pair) Information
# of flows: 480636 (avg. 31.70 pkts/flow)
Top 10 big flow size (bytes/total in %):
2.9% 2.4% 1.5% 1.5% 0.9% 0.9% 0.8% 0.8% 0.7% 0.6%
IP address Information
# of IPv4 addresses: 267492
Top 10 bandwidth usage (bytes/total in %):
18.1% 9.5% 5.6% 4.1% 4.1% 3.1% 3.0% 3.0% 2.8% 2.4%
# of IPv6 addresses: 833
Top 10 bandwidth usage (bytes/total in %):
75.7% 69.7% 12.0% 6.0% 2.6% 2.1% 1.6% 1.4% 1.3% 1.3%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](200808311400.pktlen.png)
detailed numbers
[ 32- 63]: 3083387
[ 64- 127]: 4413107
[ 128- 255]: 765490
[ 256- 511]: 343320
[ 512- 1023]: 535106
[ 1024- 2047]: 6096803
Protocol Breakdown
![[protocol breakdown chart]](200808311400.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 15237213 (100.00%) 10075889066 (100.00%) 661.27
ip 15201835 ( 99.77%) 10058123284 ( 99.82%) 661.64
tcp 10931199 ( 71.74%) 8412267764 ( 83.49%) 769.56
http(s) 4614166 ( 30.28%) 6164527625 ( 61.18%) 1336.00
http(c) 2880630 ( 18.91%) 313759352 ( 3.11%) 108.92
squid 73461 ( 0.48%) 17311426 ( 0.17%) 235.65
smtp 363972 ( 2.39%) 51137812 ( 0.51%) 140.50
nntp 29 ( 0.00%) 6802 ( 0.00%) 234.55
ftp 133015 ( 0.87%) 18925384 ( 0.19%) 142.28
pop3 4626 ( 0.03%) 2339159 ( 0.02%) 505.65
imap 5262 ( 0.03%) 1727434 ( 0.02%) 328.28
telnet 372 ( 0.00%) 36363 ( 0.00%) 97.75
ssh 444352 ( 2.92%) 417474419 ( 4.14%) 939.51
dns 2384 ( 0.02%) 234983 ( 0.00%) 98.57
bgp 129 ( 0.00%) 37688 ( 0.00%) 292.16
napster 12 ( 0.00%) 1106 ( 0.00%) 92.17
realaud 7 ( 0.00%) 420 ( 0.00%) 60.00
rtsp 163 ( 0.00%) 42664 ( 0.00%) 261.74
icecast 1021 ( 0.01%) 89286 ( 0.00%) 87.45
hotline 3 ( 0.00%) 180 ( 0.00%) 60.00
other 2407593 ( 15.80%) 1424615515 ( 14.14%) 591.72
udp 3400051 ( 22.31%) 1565310471 ( 15.54%) 460.38
dns 895618 ( 5.88%) 156613506 ( 1.55%) 174.87
realaud 19270 ( 0.13%) 8651847 ( 0.09%) 448.98
halflif 8 ( 0.00%) 644 ( 0.00%) 80.50
starcra 33 ( 0.00%) 4195 ( 0.00%) 127.12
everque 36 ( 0.00%) 5659 ( 0.00%) 157.19
unreal 5 ( 0.00%) 2627 ( 0.00%) 525.40
quake 18 ( 0.00%) 1414 ( 0.00%) 78.56
cuseeme 3 ( 0.00%) 239 ( 0.00%) 79.67
other 2484793 ( 16.31%) 1399952431 ( 13.89%) 563.41
icmp 809761 ( 5.31%) 72296063 ( 0.72%) 89.28
ipip 335 ( 0.00%) 41558 ( 0.00%) 124.05
ipsec 3493 ( 0.02%) 470958 ( 0.00%) 134.83
ip6 962 ( 0.01%) 116937 ( 0.00%) 121.56
other 56034 ( 0.37%) 7619533 ( 0.08%) 135.98
frag 4472 ( 0.03%) 3059486 ( 0.03%) 684.14
ip6 35378 ( 0.23%) 17765782 ( 0.18%) 502.17
tcp6 20473 ( 0.13%) 15463240 ( 0.15%) 755.30
http(s) 8 ( 0.00%) 712 ( 0.00%) 89.00
http(c) 4085 ( 0.03%) 431109 ( 0.00%) 105.53
smtp 235 ( 0.00%) 52272 ( 0.00%) 222.43
ftp 123 ( 0.00%) 13049 ( 0.00%) 106.09
pop3 82 ( 0.00%) 8620 ( 0.00%) 105.12
ssh 34 ( 0.00%) 9532 ( 0.00%) 280.35
dns 7 ( 0.00%) 635 ( 0.00%) 90.71
bgp 402 ( 0.00%) 36180 ( 0.00%) 90.00
other 15497 ( 0.10%) 14911131 ( 0.15%) 962.19
udp6 9422 ( 0.06%) 1638548 ( 0.02%) 173.91
dns 9412 ( 0.06%) 1637448 ( 0.02%) 173.97
other 10 ( 0.00%) 1100 ( 0.00%) 110.00
icmp6 5453 ( 0.04%) 659914 ( 0.01%) 121.02
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
tcpdump file: 200808311400.dump.gz (370.65 MB)