Traffic Trace Info
DumpFile: 200809041400.dump
FileSize: 1604.39MB
Id: 200809041400
StartTime: Thu Sep 4 14:00:00 2008
EndTime: Thu Sep 4 14:15:01 2008
TotalTime: 900.24 seconds
TotalCapSize: 1257.55MB CapLen: 96 bytes
# of packets: 22729829 (15271.42MB)
AvgRate: 142.30Mbps stddev:25.45M
IP flow (unique src/dst pair) Information
# of flows: 594987 (avg. 38.20 pkts/flow)
Top 10 big flow size (bytes/total in %):
3.7% 2.6% 2.1% 1.8% 1.6% 1.4% 1.3% 1.2% 1.0% 1.0%
IP address Information
# of IPv4 addresses: 315957
Top 10 bandwidth usage (bytes/total in %):
11.5% 7.9% 6.6% 3.9% 3.7% 3.3% 3.2% 3.0% 2.7% 2.3%
# of IPv6 addresses: 818
Top 10 bandwidth usage (bytes/total in %):
94.8% 94.8% 0.6% 0.4% 0.3% 0.3% 0.3% 0.3% 0.3% 0.3%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](200809041400.pktlen.png)
detailed numbers
[ 32- 63]: 5485483
[ 64- 127]: 5570897
[ 128- 255]: 812449
[ 256- 511]: 501323
[ 512- 1023]: 473571
[ 1024- 2047]: 9886106
Protocol Breakdown
![[protocol breakdown chart]](200809041400.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 22729829 (100.00%) 16013241394 (100.00%) 704.50
ip 22658789 ( 99.69%) 15939622727 ( 99.54%) 703.46
tcp 19544278 ( 85.99%) 15427636755 ( 96.34%) 789.37
http(s) 9260668 ( 40.74%) 11981951795 ( 74.83%) 1293.85
http(c) 5404838 ( 23.78%) 502325606 ( 3.14%) 92.94
squid 383037 ( 1.69%) 351756046 ( 2.20%) 918.33
smtp 816763 ( 3.59%) 219405406 ( 1.37%) 268.63
nntp 30 ( 0.00%) 3486 ( 0.00%) 116.20
ftp 324981 ( 1.43%) 262817707 ( 1.64%) 808.72
pop3 46831 ( 0.21%) 31334805 ( 0.20%) 669.10
imap 6785 ( 0.03%) 1699380 ( 0.01%) 250.46
telnet 1760 ( 0.01%) 237565 ( 0.00%) 134.98
ssh 92819 ( 0.41%) 17806342 ( 0.11%) 191.84
dns 3926 ( 0.02%) 324832 ( 0.00%) 82.74
bgp 206 ( 0.00%) 69800 ( 0.00%) 338.83
napster 261 ( 0.00%) 17759 ( 0.00%) 68.04
realaud 149 ( 0.00%) 14240 ( 0.00%) 95.57
rtsp 395874 ( 1.74%) 383523698 ( 2.40%) 968.80
icecast 23836 ( 0.10%) 30406493 ( 0.19%) 1275.65
hotline 12 ( 0.00%) 2771 ( 0.00%) 230.92
other 2781448 ( 12.24%) 1643935784 ( 10.27%) 591.04
udp 1852661 ( 8.15%) 374633658 ( 2.34%) 202.21
dns 1413653 ( 6.22%) 252040669 ( 1.57%) 178.29
realaud 1843 ( 0.01%) 111325 ( 0.00%) 60.40
halflif 15 ( 0.00%) 1649 ( 0.00%) 109.93
starcra 36 ( 0.00%) 4623 ( 0.00%) 128.42
everque 50 ( 0.00%) 7798 ( 0.00%) 155.96
unreal 14 ( 0.00%) 2023 ( 0.00%) 144.50
quake 23 ( 0.00%) 1848 ( 0.00%) 80.35
cuseeme 5 ( 0.00%) 489 ( 0.00%) 97.80
other 436990 ( 1.92%) 122439157 ( 0.76%) 280.19
icmp 1071200 ( 4.71%) 105547507 ( 0.66%) 98.53
ipip 322 ( 0.00%) 40008 ( 0.00%) 124.25
ipsec 4325 ( 0.02%) 691454 ( 0.00%) 159.87
ip6 988 ( 0.00%) 121089 ( 0.00%) 122.56
other 185015 ( 0.81%) 30952256 ( 0.19%) 167.30
frag 1737 ( 0.01%) 1375789 ( 0.01%) 792.05
ip6 71040 ( 0.31%) 73618667 ( 0.46%) 1036.30
tcp6 53138 ( 0.23%) 70725830 ( 0.44%) 1330.98
http(s) 166 ( 0.00%) 211610 ( 0.00%) 1274.76
http(c) 3395 ( 0.01%) 319039 ( 0.00%) 93.97
smtp 309 ( 0.00%) 190626 ( 0.00%) 616.91
ssh 395 ( 0.00%) 60290 ( 0.00%) 152.63
bgp 411 ( 0.00%) 38118 ( 0.00%) 92.74
other 48462 ( 0.21%) 69906147 ( 0.44%) 1442.49
udp6 13963 ( 0.06%) 2369371 ( 0.01%) 169.69
dns 13926 ( 0.06%) 2365301 ( 0.01%) 169.85
other 37 ( 0.00%) 4070 ( 0.00%) 110.00
icmp6 3889 ( 0.02%) 503705 ( 0.00%) 129.52
pim6 31 ( 0.00%) 4216 ( 0.00%) 136.00
other6 19 ( 0.00%) 15545 ( 0.00%) 818.16
tcpdump file: 200809041400.dump.gz (563.28 MB)