Traffic Trace Info
DumpFile: 200809301400.dump
FileSize: 1717.84MB
Id: 200809301400
StartTime: Tue Sep 30 14:00:01 2008
EndTime: Tue Sep 30 14:15:00 2008
TotalTime: 899.11 seconds
TotalCapSize: 1344.77MB CapLen: 96 bytes
# of packets: 24448757 (16360.02MB)
AvgRate: 152.61Mbps stddev:35.05M
IP flow (unique src/dst pair) Information
# of flows: 684508 (avg. 35.72 pkts/flow)
Top 10 big flow size (bytes/total in %):
3.4% 1.6% 1.5% 1.3% 1.1% 1.1% 0.9% 0.9% 0.8% 0.8%
IP address Information
# of IPv4 addresses: 369770
Top 10 bandwidth usage (bytes/total in %):
10.7% 5.1% 4.2% 3.4% 3.4% 2.5% 2.2% 1.9% 1.6% 1.6%
# of IPv6 addresses: 775
Top 10 bandwidth usage (bytes/total in %):
37.0% 33.9% 7.7% 6.2% 6.2% 5.9% 3.9% 3.8% 3.8% 3.4%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](200809301400.pktlen.png)
detailed numbers
[ 32- 63]: 5548334
[ 64- 127]: 6073920
[ 128- 255]: 1037357
[ 256- 511]: 544940
[ 512- 1023]: 839033
[ 1024- 2047]: 10405173
Protocol Breakdown
![[protocol breakdown chart]](200809301400.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 24448757 (100.00%) 17154719298 (100.00%) 701.66
ip 24411957 ( 99.85%) 17149930473 ( 99.97%) 702.52
tcp 21259643 ( 86.96%) 16292053822 ( 94.97%) 766.34
http(s) 8640683 ( 35.34%) 11569590947 ( 67.44%) 1338.97
http(c) 5903643 ( 24.15%) 640082327 ( 3.73%) 108.42
squid 153512 ( 0.63%) 74442822 ( 0.43%) 484.93
smtp 584408 ( 2.39%) 113036438 ( 0.66%) 193.42
nntp 25 ( 0.00%) 1928 ( 0.00%) 77.12
ftp 265542 ( 1.09%) 343883313 ( 2.00%) 1295.02
pop3 34961 ( 0.14%) 17298462 ( 0.10%) 494.79
imap 7729 ( 0.03%) 1234395 ( 0.01%) 159.71
telnet 917 ( 0.00%) 73401 ( 0.00%) 80.04
ssh 1015722 ( 4.15%) 223401779 ( 1.30%) 219.94
dns 17168 ( 0.07%) 1790557 ( 0.01%) 104.30
bgp 191 ( 0.00%) 56849 ( 0.00%) 297.64
napster 167 ( 0.00%) 17407 ( 0.00%) 104.23
realaud 1954 ( 0.01%) 2249686 ( 0.01%) 1151.32
rtsp 565469 ( 2.31%) 539269161 ( 3.14%) 953.67
icecast 12601 ( 0.05%) 8045889 ( 0.05%) 638.51
hotline 1 ( 0.00%) 60 ( 0.00%) 60.00
other 4054680 ( 16.58%) 2757562201 ( 16.07%) 680.09
udp 2398419 ( 9.81%) 787632410 ( 4.59%) 328.40
dns 1244516 ( 5.09%) 230929927 ( 1.35%) 185.56
rip 1 ( 0.00%) 98 ( 0.00%) 98.00
realaud 4806 ( 0.02%) 2616434 ( 0.02%) 544.41
halflif 25 ( 0.00%) 3788 ( 0.00%) 151.52
starcra 59 ( 0.00%) 10027 ( 0.00%) 169.95
everque 55 ( 0.00%) 7018 ( 0.00%) 127.60
unreal 16 ( 0.00%) 2571 ( 0.00%) 160.69
quake 22 ( 0.00%) 1979 ( 0.00%) 89.95
cuseeme 4 ( 0.00%) 337 ( 0.00%) 84.25
other 1148771 ( 4.70%) 554012408 ( 3.23%) 482.27
icmp 693206 ( 2.84%) 60892601 ( 0.35%) 87.84
ipip 314 ( 0.00%) 38564 ( 0.00%) 122.82
ipsec 4119 ( 0.02%) 689610 ( 0.00%) 167.42
ip6 823 ( 0.00%) 106160 ( 0.00%) 128.99
other 55433 ( 0.23%) 8517306 ( 0.05%) 153.65
frag 63650 ( 0.26%) 55651062 ( 0.32%) 874.33
ip6 36800 ( 0.15%) 4788825 ( 0.03%) 130.13
tcp6 21581 ( 0.09%) 2386532 ( 0.01%) 110.58
http(s) 235 ( 0.00%) 297126 ( 0.00%) 1264.37
http(c) 19075 ( 0.08%) 1791470 ( 0.01%) 93.92
smtp 244 ( 0.00%) 86511 ( 0.00%) 354.55
pop3 53 ( 0.00%) 5896 ( 0.00%) 111.25
ssh 51 ( 0.00%) 11446 ( 0.00%) 224.43
bgp 393 ( 0.00%) 34892 ( 0.00%) 88.78
other 1530 ( 0.01%) 159191 ( 0.00%) 104.05
udp6 10423 ( 0.04%) 1731749 ( 0.01%) 166.15
dns 10377 ( 0.04%) 1726689 ( 0.01%) 166.40
other 46 ( 0.00%) 5060 ( 0.00%) 110.00
icmp6 4760 ( 0.02%) 661290 ( 0.00%) 138.93
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
other6 6 ( 0.00%) 5174 ( 0.00%) 862.33
tcpdump file: 200809301400.dump.gz (599.04 MB)