Traffic Trace Info
DumpFile: 200809281400.dump
FileSize: 1186.73MB
Id: 200809281400
StartTime: Sun Sep 28 14:00:00 2008
EndTime: Sun Sep 28 14:15:00 2008
TotalTime: 899.94 seconds
TotalCapSize: 929.00MB CapLen: 96 bytes
# of packets: 16889853 (12348.77MB)
AvgRate: 115.10Mbps stddev:12.50M
IP flow (unique src/dst pair) Information
# of flows: 505321 (avg. 33.42 pkts/flow)
Top 10 big flow size (bytes/total in %):
9.2% 6.6% 4.6% 4.6% 1.1% 1.1% 0.9% 0.8% 0.8% 0.8%
IP address Information
# of IPv4 addresses: 273386
Top 10 bandwidth usage (bytes/total in %):
16.6% 9.4% 9.4% 6.6% 6.6% 6.3% 5.7% 5.0% 4.8% 4.8%
# of IPv6 addresses: 738
Top 10 bandwidth usage (bytes/total in %):
41.3% 37.8% 6.8% 6.8% 4.4% 4.4% 4.4% 3.8% 3.5% 2.9%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](200809281400.pktlen.png)
detailed numbers
[ 32- 63]: 3403069
[ 64- 127]: 3854454
[ 128- 255]: 671653
[ 256- 511]: 478659
[ 512- 1023]: 347397
[ 1024- 2047]: 8134621
Protocol Breakdown
![[protocol breakdown chart]](200809281400.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 16889853 (100.00%) 12948625531 (100.00%) 766.65
ip 16855207 ( 99.79%) 12944382576 ( 99.97%) 767.98
tcp 14366608 ( 85.06%) 12395768353 ( 95.73%) 862.82
http(s) 5816519 ( 34.44%) 8022604423 ( 61.96%) 1379.28
http(c) 3163668 ( 18.73%) 383290171 ( 2.96%) 121.15
squid 102411 ( 0.61%) 55294707 ( 0.43%) 539.93
smtp 582281 ( 3.45%) 111390560 ( 0.86%) 191.30
nntp 18 ( 0.00%) 1510 ( 0.00%) 83.89
ftp 457226 ( 2.71%) 618669765 ( 4.78%) 1353.09
pop3 28349 ( 0.17%) 21610359 ( 0.17%) 762.30
imap 3408 ( 0.02%) 539173 ( 0.00%) 158.21
telnet 388 ( 0.00%) 27092 ( 0.00%) 69.82
ssh 186764 ( 1.11%) 163605516 ( 1.26%) 876.00
dns 14849 ( 0.09%) 1705578 ( 0.01%) 114.86
bgp 190 ( 0.00%) 53130 ( 0.00%) 279.63
realaud 17 ( 0.00%) 1156 ( 0.00%) 68.00
rtsp 135784 ( 0.80%) 151420525 ( 1.17%) 1115.16
icecast 563 ( 0.00%) 45219 ( 0.00%) 80.32
other 3874002 ( 22.94%) 2865499209 ( 22.13%) 739.67
udp 1873677 ( 11.09%) 494484182 ( 3.82%) 263.91
dns 1218241 ( 7.21%) 214027306 ( 1.65%) 175.69
realaud 19 ( 0.00%) 2106 ( 0.00%) 110.84
halflif 16 ( 0.00%) 1212 ( 0.00%) 75.75
starcra 20 ( 0.00%) 3131 ( 0.00%) 156.55
everque 42 ( 0.00%) 7172 ( 0.00%) 170.76
unreal 10 ( 0.00%) 1434 ( 0.00%) 143.40
quake 20 ( 0.00%) 1657 ( 0.00%) 82.85
cuseeme 2 ( 0.00%) 159 ( 0.00%) 79.50
other 655163 ( 3.88%) 280391421 ( 2.17%) 427.97
icmp 595974 ( 3.53%) 51578756 ( 0.40%) 86.55
ipip 311 ( 0.00%) 38046 ( 0.00%) 122.33
ipsec 3235 ( 0.02%) 433506 ( 0.00%) 134.00
ip6 891 ( 0.01%) 108657 ( 0.00%) 121.95
other 14511 ( 0.09%) 1971076 ( 0.02%) 135.83
frag 51797 ( 0.31%) 45622038 ( 0.35%) 880.79
ip6 34646 ( 0.21%) 4242955 ( 0.03%) 122.47
tcp6 20949 ( 0.12%) 2047013 ( 0.02%) 97.71
http(c) 18927 ( 0.11%) 1814829 ( 0.01%) 95.89
smtp 281 ( 0.00%) 70611 ( 0.00%) 251.28
ftp 8 ( 0.00%) 752 ( 0.00%) 94.00
pop3 83 ( 0.00%) 8951 ( 0.00%) 107.84
ssh 15 ( 0.00%) 1994 ( 0.00%) 132.93
bgp 395 ( 0.00%) 34941 ( 0.00%) 88.46
other 1240 ( 0.01%) 114935 ( 0.00%) 92.69
udp6 9008 ( 0.05%) 1539947 ( 0.01%) 170.95
dns 8968 ( 0.05%) 1535547 ( 0.01%) 171.23
other 40 ( 0.00%) 4400 ( 0.00%) 110.00
icmp6 4655 ( 0.03%) 648360 ( 0.01%) 139.28
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
other6 4 ( 0.00%) 3555 ( 0.00%) 888.75
tcpdump file: 200809281400.dump.gz (411.37 MB)