Traffic Trace Info
DumpFile: 200809051400.dump
FileSize: 1199.75MB
Id: 200809051400
StartTime: Fri Sep 5 14:00:00 2008
EndTime: Fri Sep 5 14:10:13 2008
TotalTime: 613.28 seconds
TotalCapSize: 941.38MB CapLen: 96 bytes
# of packets: 16931975 (11530.89MB)
AvgRate: 157.76Mbps stddev:23.45M
IP flow (unique src/dst pair) Information
# of flows: 413324 (avg. 40.97 pkts/flow)
Top 10 big flow size (bytes/total in %):
4.0% 1.6% 1.6% 1.1% 1.1% 1.0% 0.9% 0.9% 0.8% 0.8%
IP address Information
# of IPv4 addresses: 226780
Top 10 bandwidth usage (bytes/total in %):
12.3% 8.2% 4.7% 4.4% 4.1% 4.1% 3.6% 3.5% 2.9% 2.8%
# of IPv6 addresses: 731
Top 10 bandwidth usage (bytes/total in %):
10.1% 9.1% 7.2% 7.1% 6.1% 4.7% 4.7% 4.6% 4.5% 4.3%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](200809051400.pktlen.png)
detailed numbers
[ 32- 63]: 3369015
[ 64- 127]: 4741421
[ 128- 255]: 624380
[ 256- 511]: 377703
[ 512- 1023]: 379063
[ 1024- 2047]: 7440393
Protocol Breakdown
![[protocol breakdown chart]](200809051400.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 16931975 (100.00%) 12091012911 (100.00%) 714.09
ip 16914824 ( 99.90%) 12088273221 ( 99.98%) 714.66
tcp 14514401 ( 85.72%) 11544428716 ( 95.48%) 795.38
http(s) 6172465 ( 36.45%) 8228969391 ( 68.06%) 1333.17
http(c) 4263901 ( 25.18%) 459217497 ( 3.80%) 107.70
squid 276976 ( 1.64%) 239297952 ( 1.98%) 863.97
smtp 447948 ( 2.65%) 105722156 ( 0.87%) 236.01
nntp 33 ( 0.00%) 3167 ( 0.00%) 95.97
ftp 566889 ( 3.35%) 513414045 ( 4.25%) 905.67
pop3 34961 ( 0.21%) 30285247 ( 0.25%) 866.26
imap 4095 ( 0.02%) 561087 ( 0.00%) 137.02
telnet 8085 ( 0.05%) 638670 ( 0.01%) 78.99
ssh 274406 ( 1.62%) 74268958 ( 0.61%) 270.65
dns 2386 ( 0.01%) 191610 ( 0.00%) 80.31
bgp 138 ( 0.00%) 40093 ( 0.00%) 290.53
napster 93 ( 0.00%) 7066 ( 0.00%) 75.98
realaud 165 ( 0.00%) 16389 ( 0.00%) 99.33
rtsp 607646 ( 3.59%) 594564669 ( 4.92%) 978.47
icecast 15311 ( 0.09%) 15750597 ( 0.13%) 1028.71
other 1838903 ( 10.86%) 1281480122 ( 10.60%) 696.87
udp 1700986 ( 10.05%) 466096861 ( 3.85%) 274.02
dns 928426 ( 5.48%) 159534603 ( 1.32%) 171.83
realaud 11025 ( 0.07%) 5668355 ( 0.05%) 514.14
halflif 14 ( 0.00%) 1215 ( 0.00%) 86.79
starcra 20 ( 0.00%) 3277 ( 0.00%) 163.85
everque 198 ( 0.00%) 23574 ( 0.00%) 119.06
unreal 11 ( 0.00%) 1537 ( 0.00%) 139.73
quake 13 ( 0.00%) 1325 ( 0.00%) 101.92
cuseeme 5 ( 0.00%) 482 ( 0.00%) 96.40
other 761253 ( 4.50%) 300846041 ( 2.49%) 395.20
icmp 590568 ( 3.49%) 59113919 ( 0.49%) 100.10
ipip 231 ( 0.00%) 28922 ( 0.00%) 125.20
ipsec 28538 ( 0.17%) 2815532 ( 0.02%) 98.66
ip6 1405 ( 0.01%) 226903 ( 0.00%) 161.50
other 78695 ( 0.46%) 15562368 ( 0.13%) 197.76
frag 1461 ( 0.01%) 1317470 ( 0.01%) 901.76
ip6 17151 ( 0.10%) 2739690 ( 0.02%) 159.74
tcp6 4389 ( 0.03%) 706828 ( 0.01%) 161.05
http(c) 2298 ( 0.01%) 218522 ( 0.00%) 95.09
smtp 262 ( 0.00%) 77724 ( 0.00%) 296.66
ftp 30 ( 0.00%) 3140 ( 0.00%) 104.67
pop3 10 ( 0.00%) 868 ( 0.00%) 86.80
ssh 107 ( 0.00%) 84526 ( 0.00%) 789.96
dns 4 ( 0.00%) 845 ( 0.00%) 211.25
bgp 263 ( 0.00%) 23689 ( 0.00%) 90.07
other 1415 ( 0.01%) 297514 ( 0.00%) 210.26
udp6 9110 ( 0.05%) 1589073 ( 0.01%) 174.43
dns 9093 ( 0.05%) 1587203 ( 0.01%) 174.55
other 17 ( 0.00%) 1870 ( 0.00%) 110.00
icmp6 3609 ( 0.02%) 425360 ( 0.00%) 117.86
pim6 21 ( 0.00%) 2856 ( 0.00%) 136.00
other6 22 ( 0.00%) 15573 ( 0.00%) 707.86
tcpdump file: 200809051400.dump.gz (423.98 MB)