Traffic Trace Info
DumpFile: 200810101400.dump
FileSize: 1596.63MB
Id: 200810101400
StartTime: Fri Oct 10 14:00:01 2008
EndTime: Fri Oct 10 14:15:00 2008
TotalTime: 899.51 seconds
TotalCapSize: 1244.42MB CapLen: 96 bytes
# of packets: 23081689 (15060.37MB)
AvgRate: 140.44Mbps stddev:27.26M
IP flow (unique src/dst pair) Information
# of flows: 627623 (avg. 36.78 pkts/flow)
Top 10 big flow size (bytes/total in %):
3.4% 1.8% 1.3% 0.9% 0.8% 0.7% 0.7% 0.7% 0.7% 0.6%
IP address Information
# of IPv4 addresses: 310877
Top 10 bandwidth usage (bytes/total in %):
6.0% 5.2% 3.5% 3.5% 3.3% 3.1% 2.7% 2.5% 2.5% 2.3%
# of IPv6 addresses: 1509
Top 10 bandwidth usage (bytes/total in %):
94.4% 94.4% 2.8% 1.0% 0.9% 0.8% 0.7% 0.7% 0.3% 0.3%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](200810101400.pktlen.png)
detailed numbers
[ 32- 63]: 5605258
[ 64- 127]: 5501456
[ 128- 255]: 893114
[ 256- 511]: 554701
[ 512- 1023]: 849344
[ 1024- 2047]: 9677816
Protocol Breakdown
![[protocol breakdown chart]](200810101400.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 23081689 (100.00%) 15791941402 (100.00%) 684.18
ip 22898013 ( 99.20%) 15577112952 ( 98.64%) 680.28
tcp 18391077 ( 79.68%) 13772520060 ( 87.21%) 748.87
http(s) 7576217 ( 32.82%) 9938677575 ( 62.94%) 1311.83
http(c) 5439822 ( 23.57%) 639433168 ( 4.05%) 117.55
squid 347548 ( 1.51%) 231304191 ( 1.46%) 665.53
smtp 677921 ( 2.94%) 182843731 ( 1.16%) 269.71
nntp 27 ( 0.00%) 2780 ( 0.00%) 102.96
ftp 115546 ( 0.50%) 85248477 ( 0.54%) 737.79
pop3 37482 ( 0.16%) 22517065 ( 0.14%) 600.74
imap 6657 ( 0.03%) 1370532 ( 0.01%) 205.88
telnet 34298 ( 0.15%) 2556694 ( 0.02%) 74.54
ssh 89139 ( 0.39%) 27888314 ( 0.18%) 312.86
dns 39137 ( 0.17%) 2572897 ( 0.02%) 65.74
bgp 202 ( 0.00%) 64858 ( 0.00%) 321.08
napster 21 ( 0.00%) 2059 ( 0.00%) 98.05
realaud 268 ( 0.00%) 76764 ( 0.00%) 286.43
rtsp 756968 ( 3.28%) 727867297 ( 4.61%) 961.56
icecast 21579 ( 0.09%) 8576334 ( 0.05%) 397.44
other 3247968 ( 14.07%) 1901500704 ( 12.04%) 585.44
udp 4095657 ( 17.74%) 1764868850 ( 11.18%) 430.91
dns 1216321 ( 5.27%) 217654199 ( 1.38%) 178.94
realaud 17338 ( 0.08%) 3420526 ( 0.02%) 197.28
halflif 14 ( 0.00%) 2749 ( 0.00%) 196.36
starcra 49 ( 0.00%) 7856 ( 0.00%) 160.33
everque 83 ( 0.00%) 13624 ( 0.00%) 164.14
unreal 15 ( 0.00%) 3079 ( 0.00%) 205.27
quake 34 ( 0.00%) 4103 ( 0.00%) 120.68
cuseeme 8 ( 0.00%) 692 ( 0.00%) 86.50
other 2861752 ( 12.40%) 1543749368 ( 9.78%) 539.44
icmp 389196 ( 1.69%) 36658497 ( 0.23%) 94.19
ipip 311 ( 0.00%) 38106 ( 0.00%) 122.53
ipsec 3639 ( 0.02%) 554786 ( 0.00%) 152.46
ip6 733 ( 0.00%) 94511 ( 0.00%) 128.94
other 17400 ( 0.08%) 2378142 ( 0.02%) 136.67
frag 28846 ( 0.12%) 21219513 ( 0.13%) 735.61
ip6 183676 ( 0.80%) 214828450 ( 1.36%) 1169.61
tcp6 166309 ( 0.72%) 211664013 ( 1.34%) 1272.72
http(s) 289 ( 0.00%) 298602 ( 0.00%) 1033.22
http(c) 19270 ( 0.08%) 1828845 ( 0.01%) 94.91
smtp 5006 ( 0.02%) 6053264 ( 0.04%) 1209.20
ftp 1760 ( 0.01%) 182258 ( 0.00%) 103.56
pop3 33 ( 0.00%) 2850 ( 0.00%) 86.36
ssh 1370 ( 0.01%) 133730 ( 0.00%) 97.61
bgp 377 ( 0.00%) 33249 ( 0.00%) 88.19
other 138204 ( 0.60%) 203131215 ( 1.29%) 1469.79
udp6 11564 ( 0.05%) 2371449 ( 0.02%) 205.07
dns 10050 ( 0.04%) 1979393 ( 0.01%) 196.95
everque 2 ( 0.00%) 666 ( 0.00%) 333.00
other 1512 ( 0.01%) 391390 ( 0.00%) 258.86
icmp6 5759 ( 0.02%) 777451 ( 0.00%) 135.00
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
other6 14 ( 0.00%) 11457 ( 0.00%) 818.36
tcpdump file: 200810101400.dump.gz (546.97 MB)