Traffic Trace Info
DumpFile: 200809131400.dump
FileSize: 989.67MB
Id: 200809131400
StartTime: Sat Sep 13 14:00:00 2008
EndTime: Sat Sep 13 14:15:01 2008
TotalTime: 900.66 seconds
TotalCapSize: 774.26MB CapLen: 96 bytes
# of packets: 14116827 (9766.67MB)
AvgRate: 90.96Mbps stddev:14.13M
IP flow (unique src/dst pair) Information
# of flows: 453115 (avg. 31.16 pkts/flow)
Top 10 big flow size (bytes/total in %):
4.9% 2.5% 2.2% 1.4% 1.4% 1.3% 1.3% 1.2% 1.1% 1.0%
IP address Information
# of IPv4 addresses: 238517
Top 10 bandwidth usage (bytes/total in %):
16.7% 8.0% 5.0% 4.2% 3.8% 3.7% 3.4% 2.9% 2.8% 2.6%
# of IPv6 addresses: 691
Top 10 bandwidth usage (bytes/total in %):
12.5% 8.5% 8.3% 6.5% 6.5% 6.4% 5.6% 5.6% 5.6% 5.1%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](200809131400.pktlen.png)
detailed numbers
[ 32- 63]: 3108915
[ 64- 127]: 3335465
[ 128- 255]: 689827
[ 256- 511]: 342154
[ 512- 1023]: 367612
[ 1024- 2047]: 6272854
Protocol Breakdown
![[protocol breakdown chart]](200809131400.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 14116827 (100.00%) 10241098007 (100.00%) 725.45
ip 14097673 ( 99.86%) 10238192652 ( 99.97%) 726.23
tcp 12146720 ( 86.04%) 9760542937 ( 95.31%) 803.55
http(s) 5067950 ( 35.90%) 6701622530 ( 65.44%) 1322.35
http(c) 3274214 ( 23.19%) 334556848 ( 3.27%) 102.18
squid 220104 ( 1.56%) 179928740 ( 1.76%) 817.47
smtp 439634 ( 3.11%) 83296876 ( 0.81%) 189.47
nntp 12 ( 0.00%) 1328 ( 0.00%) 110.67
ftp 150022 ( 1.06%) 111797316 ( 1.09%) 745.21
pop3 24513 ( 0.17%) 11773350 ( 0.11%) 480.29
imap 3309 ( 0.02%) 474827 ( 0.00%) 143.50
telnet 2692 ( 0.02%) 300058 ( 0.00%) 111.46
ssh 63353 ( 0.45%) 11347473 ( 0.11%) 179.12
dns 11261 ( 0.08%) 1136363 ( 0.01%) 100.91
bgp 250 ( 0.00%) 98685 ( 0.00%) 394.74
napster 1 ( 0.00%) 62 ( 0.00%) 62.00
realaud 586 ( 0.00%) 235248 ( 0.00%) 401.45
rtsp 425122 ( 3.01%) 428561312 ( 4.18%) 1008.09
icecast 417 ( 0.00%) 29182 ( 0.00%) 69.98
hotline 3 ( 0.00%) 186 ( 0.00%) 62.00
other 2463270 ( 17.45%) 1895382133 ( 18.51%) 769.46
udp 1683135 ( 11.92%) 449413518 ( 4.39%) 267.01
dns 1255119 ( 8.89%) 230040590 ( 2.25%) 183.28
realaud 117 ( 0.00%) 40627 ( 0.00%) 347.24
halflif 18 ( 0.00%) 1877 ( 0.00%) 104.28
starcra 28 ( 0.00%) 4535 ( 0.00%) 161.96
everque 70 ( 0.00%) 10142 ( 0.00%) 144.89
unreal 11 ( 0.00%) 1474 ( 0.00%) 134.00
quake 99 ( 0.00%) 8462 ( 0.00%) 85.47
cuseeme 9 ( 0.00%) 1025 ( 0.00%) 113.89
other 427634 ( 3.03%) 219287694 ( 2.14%) 512.79
icmp 251160 ( 1.78%) 25981047 ( 0.25%) 103.44
ipip 319 ( 0.00%) 38154 ( 0.00%) 119.61
ipsec 3236 ( 0.02%) 433640 ( 0.00%) 134.00
ip6 977 ( 0.01%) 120439 ( 0.00%) 123.27
other 12126 ( 0.09%) 1662917 ( 0.02%) 137.14
frag 56745 ( 0.40%) 53058946 ( 0.52%) 935.04
ip6 19154 ( 0.14%) 2905355 ( 0.03%) 151.68
tcp6 5169 ( 0.04%) 693013 ( 0.01%) 134.07
http(s) 118 ( 0.00%) 163510 ( 0.00%) 1385.68
http(c) 2842 ( 0.02%) 257797 ( 0.00%) 90.71
smtp 121 ( 0.00%) 53290 ( 0.00%) 440.41
pop3 33 ( 0.00%) 2850 ( 0.00%) 86.36
ssh 143 ( 0.00%) 19386 ( 0.00%) 135.57
dns 4 ( 0.00%) 812 ( 0.00%) 203.00
bgp 388 ( 0.00%) 33829 ( 0.00%) 87.19
other 1520 ( 0.01%) 161539 ( 0.00%) 106.28
udp6 8966 ( 0.06%) 1575059 ( 0.02%) 175.67
dns 8941 ( 0.06%) 1572309 ( 0.02%) 175.85
other 25 ( 0.00%) 2750 ( 0.00%) 110.00
icmp6 4967 ( 0.04%) 614019 ( 0.01%) 123.62
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
other6 22 ( 0.00%) 19184 ( 0.00%) 872.00
tcpdump file: 200809131400.dump.gz (343.54 MB)