Traffic Trace Info
DumpFile: 200809231400.dump
FileSize: 1163.33MB
Id: 200809231400
StartTime: Tue Sep 23 14:00:01 2008
EndTime: Tue Sep 23 14:15:00 2008
TotalTime: 899.38 seconds
TotalCapSize: 911.82MB CapLen: 96 bytes
# of packets: 16481991 (10253.86MB)
AvgRate: 95.63Mbps stddev:19.01M
IP flow (unique src/dst pair) Information
# of flows: 516449 (avg. 31.91 pkts/flow)
Top 10 big flow size (bytes/total in %):
2.8% 2.7% 2.6% 1.7% 1.1% 1.0% 1.0% 0.8% 0.8% 0.8%
IP address Information
# of IPv4 addresses: 275521
Top 10 bandwidth usage (bytes/total in %):
9.3% 5.4% 4.0% 3.7% 3.7% 3.6% 3.3% 2.9% 2.9% 2.8%
# of IPv6 addresses: 705
Top 10 bandwidth usage (bytes/total in %):
57.8% 57.8% 15.2% 13.9% 3.7% 2.5% 1.9% 1.8% 1.7% 1.7%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](200809231400.pktlen.png)
detailed numbers
[ 32- 63]: 3189296
[ 64- 127]: 5105890
[ 128- 255]: 788142
[ 256- 511]: 374878
[ 512- 1023]: 466636
[ 1024- 2047]: 6557149
Protocol Breakdown
![[protocol breakdown chart]](200809231400.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 16481991 (100.00%) 10751949685 (100.00%) 652.35
ip 16439099 ( 99.74%) 10740287892 ( 99.89%) 653.34
tcp 13268063 ( 80.50%) 9892655876 ( 92.01%) 745.60
http(s) 5161350 ( 31.32%) 6556043977 ( 60.98%) 1270.22
http(c) 3669133 ( 22.26%) 475863604 ( 4.43%) 129.69
squid 280152 ( 1.70%) 197515313 ( 1.84%) 705.03
smtp 772388 ( 4.69%) 188946554 ( 1.76%) 244.63
nntp 46 ( 0.00%) 3541 ( 0.00%) 76.98
ftp 93272 ( 0.57%) 46621711 ( 0.43%) 499.85
pop3 25051 ( 0.15%) 17714275 ( 0.16%) 707.13
imap 4887 ( 0.03%) 635490 ( 0.01%) 130.04
telnet 3102 ( 0.02%) 393873 ( 0.00%) 126.97
ssh 26207 ( 0.16%) 9847995 ( 0.09%) 375.78
dns 55784 ( 0.34%) 20918896 ( 0.19%) 375.00
bgp 201 ( 0.00%) 62198 ( 0.00%) 309.44
napster 4 ( 0.00%) 240 ( 0.00%) 60.00
realaud 63 ( 0.00%) 6076 ( 0.00%) 96.44
rtsp 52175 ( 0.32%) 53238881 ( 0.50%) 1020.39
icecast 378 ( 0.00%) 29081 ( 0.00%) 76.93
other 3123743 ( 18.95%) 2324806551 ( 21.62%) 744.24
udp 2448810 ( 14.86%) 765796493 ( 7.12%) 312.72
dns 1445053 ( 8.77%) 266467319 ( 2.48%) 184.40
rip 2 ( 0.00%) 156 ( 0.00%) 78.00
realaud 29 ( 0.00%) 3333 ( 0.00%) 114.93
halflif 41 ( 0.00%) 5232 ( 0.00%) 127.61
starcra 46 ( 0.00%) 8593 ( 0.00%) 186.80
everque 65 ( 0.00%) 10019 ( 0.00%) 154.14
unreal 22 ( 0.00%) 3228 ( 0.00%) 146.73
quake 16 ( 0.00%) 1340 ( 0.00%) 83.75
cuseeme 8 ( 0.00%) 629 ( 0.00%) 78.62
other 1003442 ( 6.09%) 499216318 ( 4.64%) 497.50
icmp 615857 ( 3.74%) 61768689 ( 0.57%) 100.30
ipip 352 ( 0.00%) 44420 ( 0.00%) 126.19
ipsec 3947 ( 0.02%) 549130 ( 0.01%) 139.13
ip6 1035 ( 0.01%) 126060 ( 0.00%) 121.80
other 101035 ( 0.61%) 19347224 ( 0.18%) 191.49
frag 4023 ( 0.02%) 4515102 ( 0.04%) 1122.32
ip6 42892 ( 0.26%) 11661793 ( 0.11%) 271.89
tcp6 26416 ( 0.16%) 8985176 ( 0.08%) 340.14
http(c) 19006 ( 0.12%) 1784682 ( 0.02%) 93.90
smtp 418 ( 0.00%) 272832 ( 0.00%) 652.71
ftp 3 ( 0.00%) 475 ( 0.00%) 158.33
pop3 75 ( 0.00%) 7904 ( 0.00%) 105.39
imap 2 ( 0.00%) 225 ( 0.00%) 112.50
ssh 69 ( 0.00%) 20122 ( 0.00%) 291.62
dns 7 ( 0.00%) 635 ( 0.00%) 90.71
bgp 391 ( 0.00%) 34851 ( 0.00%) 89.13
other 6445 ( 0.04%) 6863450 ( 0.06%) 1064.93
udp6 10409 ( 0.06%) 1913093 ( 0.02%) 183.79
dns 10356 ( 0.06%) 1907263 ( 0.02%) 184.17
other 53 ( 0.00%) 5830 ( 0.00%) 110.00
icmp6 6034 ( 0.04%) 757477 ( 0.01%) 125.53
pim6 31 ( 0.00%) 4216 ( 0.00%) 136.00
other6 2 ( 0.00%) 1831 ( 0.00%) 915.50
tcpdump file: 200809231400.dump.gz (414.83 MB)