Traffic Trace Info
DumpFile: 200809181400.dump
FileSize: 1326.28MB
Id: 200809181400
StartTime: Thu Sep 18 14:00:01 2008
EndTime: Thu Sep 18 14:15:01 2008
TotalTime: 899.98 seconds
TotalCapSize: 1039.62MB CapLen: 96 bytes
# of packets: 18785457 (12150.19MB)
AvgRate: 113.27Mbps stddev:25.53M
IP flow (unique src/dst pair) Information
# of flows: 563561 (avg. 33.33 pkts/flow)
Top 10 big flow size (bytes/total in %):
3.0% 2.3% 1.8% 1.2% 1.0% 0.9% 0.9% 0.9% 0.9% 0.8%
IP address Information
# of IPv4 addresses: 301388
Top 10 bandwidth usage (bytes/total in %):
9.1% 5.1% 3.1% 3.1% 3.1% 3.0% 2.8% 2.7% 2.4% 2.4%
# of IPv6 addresses: 815
Top 10 bandwidth usage (bytes/total in %):
53.0% 53.0% 14.4% 13.2% 6.0% 6.0% 3.0% 2.8% 1.7% 1.5%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](200809181400.pktlen.png)
detailed numbers
[ 32- 63]: 3950569
[ 64- 127]: 5211188
[ 128- 255]: 787422
[ 256- 511]: 477529
[ 512- 1023]: 537988
[ 1024- 2047]: 7820761
Protocol Breakdown
![[protocol breakdown chart]](200809181400.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 18785457 (100.00%) 12740400381 (100.00%) 678.21
ip 18734688 ( 99.73%) 12728114022 ( 99.90%) 679.39
tcp 15731900 ( 83.75%) 11901788379 ( 93.42%) 756.54
http(s) 6655436 ( 35.43%) 8307119204 ( 65.20%) 1248.17
http(c) 4799476 ( 25.55%) 752635341 ( 5.91%) 156.82
squid 153132 ( 0.82%) 77764753 ( 0.61%) 507.83
smtp 595732 ( 3.17%) 188615505 ( 1.48%) 316.61
nntp 48 ( 0.00%) 4258 ( 0.00%) 88.71
ftp 163459 ( 0.87%) 60532757 ( 0.48%) 370.32
pop3 30692 ( 0.16%) 16957200 ( 0.13%) 552.50
imap 6124 ( 0.03%) 1229005 ( 0.01%) 200.69
telnet 3233 ( 0.02%) 451170 ( 0.00%) 139.55
ssh 126895 ( 0.68%) 82415765 ( 0.65%) 649.48
dns 3560 ( 0.02%) 313983 ( 0.00%) 88.20
bgp 231 ( 0.00%) 74606 ( 0.00%) 322.97
napster 14 ( 0.00%) 1203 ( 0.00%) 85.93
realaud 108 ( 0.00%) 9591 ( 0.00%) 88.81
rtsp 509792 ( 2.71%) 593579678 ( 4.66%) 1164.36
icecast 20474 ( 0.11%) 4863664 ( 0.04%) 237.55
other 2663491 ( 14.18%) 1815220516 ( 14.25%) 681.52
udp 2586656 ( 13.77%) 763963095 ( 6.00%) 295.35
dns 1392428 ( 7.41%) 231457027 ( 1.82%) 166.23
realaud 38167 ( 0.20%) 28570708 ( 0.22%) 748.57
halflif 19 ( 0.00%) 1980 ( 0.00%) 104.21
starcra 61 ( 0.00%) 10628 ( 0.00%) 174.23
everque 66 ( 0.00%) 10975 ( 0.00%) 166.29
unreal 21 ( 0.00%) 2709 ( 0.00%) 129.00
quake 20 ( 0.00%) 1618 ( 0.00%) 80.90
cuseeme 11 ( 0.00%) 1128 ( 0.00%) 102.55
other 1155664 ( 6.15%) 503625278 ( 3.95%) 435.79
icmp 304854 ( 1.62%) 40761780 ( 0.32%) 133.71
ipip 343 ( 0.00%) 43586 ( 0.00%) 127.07
ipsec 4015 ( 0.02%) 704210 ( 0.01%) 175.39
ip6 1376 ( 0.01%) 192850 ( 0.00%) 140.15
other 105544 ( 0.56%) 20660122 ( 0.16%) 195.75
frag 2650 ( 0.01%) 2615768 ( 0.02%) 987.08
ip6 50769 ( 0.27%) 12286359 ( 0.10%) 242.01
tcp6 35026 ( 0.19%) 9717722 ( 0.08%) 277.44
http(s) 135 ( 0.00%) 176415 ( 0.00%) 1306.78
http(c) 19257 ( 0.10%) 1806046 ( 0.01%) 93.79
smtp 693 ( 0.00%) 229517 ( 0.00%) 331.19
ftp 576 ( 0.00%) 55806 ( 0.00%) 96.89
pop3 57 ( 0.00%) 6336 ( 0.00%) 111.16
ssh 7194 ( 0.04%) 752156 ( 0.01%) 104.55
dns 15 ( 0.00%) 2259 ( 0.00%) 150.60
bgp 400 ( 0.00%) 35618 ( 0.00%) 89.05
other 6699 ( 0.04%) 6653569 ( 0.05%) 993.22
udp6 10421 ( 0.06%) 1902061 ( 0.01%) 182.52
dns 10385 ( 0.06%) 1898101 ( 0.01%) 182.77
other 36 ( 0.00%) 3960 ( 0.00%) 110.00
icmp6 5287 ( 0.03%) 658594 ( 0.01%) 124.57
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
other6 5 ( 0.00%) 3902 ( 0.00%) 780.40
tcpdump file: 200809181400.dump.gz (471.30 MB)