Traffic Trace Info
DumpFile: 200810121400.dump
FileSize: 1175.70MB
Id: 200810121400
StartTime: Sun Oct 12 14:00:00 2008
EndTime: Sun Oct 12 14:15:00 2008
TotalTime: 900.30 seconds
TotalCapSize: 919.05MB CapLen: 96 bytes
# of packets: 16818878 (12423.93MB)
AvgRate: 115.73Mbps stddev:22.97M
IP flow (unique src/dst pair) Information
# of flows: 495973 (avg. 33.91 pkts/flow)
Top 10 big flow size (bytes/total in %):
5.2% 3.3% 3.2% 2.5% 2.5% 1.8% 1.5% 1.1% 1.0% 1.0%
IP address Information
# of IPv4 addresses: 296118
Top 10 bandwidth usage (bytes/total in %):
10.7% 7.8% 7.2% 6.3% 5.5% 5.5% 5.4% 5.2% 3.4% 3.2%
# of IPv6 addresses: 1466
Top 10 bandwidth usage (bytes/total in %):
28.3% 26.0% 24.6% 13.0% 10.8% 6.3% 4.8% 4.7% 3.5% 3.2%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](200810121400.pktlen.png)
detailed numbers
[ 32- 63]: 3866665
[ 64- 127]: 3361858
[ 128- 255]: 613649
[ 256- 511]: 360826
[ 512- 1023]: 484138
[ 1024- 2047]: 8131742
Protocol Breakdown
![[protocol breakdown chart]](200810121400.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 16818878 (100.00%) 13027430988 (100.00%) 774.57
ip 16765605 ( 99.68%) 13021174760 ( 99.95%) 776.66
tcp 14820373 ( 88.12%) 12491343086 ( 95.88%) 842.85
http(s) 6085220 ( 36.18%) 8379786975 ( 64.32%) 1377.07
http(c) 3366860 ( 20.02%) 322726048 ( 2.48%) 95.85
squid 306003 ( 1.82%) 181938716 ( 1.40%) 594.57
smtp 349981 ( 2.08%) 55058145 ( 0.42%) 157.32
ftp 106484 ( 0.63%) 96191230 ( 0.74%) 903.34
pop3 17503 ( 0.10%) 11759077 ( 0.09%) 671.83
imap 2517 ( 0.01%) 381496 ( 0.00%) 151.57
telnet 11496 ( 0.07%) 852521 ( 0.01%) 74.16
ssh 380846 ( 2.26%) 61377275 ( 0.47%) 161.16
dns 3841 ( 0.02%) 505579 ( 0.00%) 131.63
bgp 193 ( 0.00%) 52606 ( 0.00%) 272.57
napster 231 ( 0.00%) 212058 ( 0.00%) 918.00
realaud 158 ( 0.00%) 63748 ( 0.00%) 403.47
rtsp 199567 ( 1.19%) 196993439 ( 1.51%) 987.10
icecast 824 ( 0.00%) 556220 ( 0.00%) 675.02
hotline 3 ( 0.00%) 186 ( 0.00%) 62.00
other 3988227 ( 23.71%) 3182862627 ( 24.43%) 798.06
udp 1697384 ( 10.09%) 504900518 ( 3.88%) 297.46
dns 929749 ( 5.53%) 168498828 ( 1.29%) 181.23
realaud 1978 ( 0.01%) 129861 ( 0.00%) 65.65
halflif 21 ( 0.00%) 2166 ( 0.00%) 103.14
starcra 31 ( 0.00%) 3073 ( 0.00%) 99.13
everque 54 ( 0.00%) 9746 ( 0.00%) 180.48
unreal 26 ( 0.00%) 5893 ( 0.00%) 226.65
quake 21 ( 0.00%) 3051 ( 0.00%) 145.29
cuseeme 2 ( 0.00%) 180 ( 0.00%) 90.00
other 765473 ( 4.55%) 336228465 ( 2.58%) 439.24
icmp 232379 ( 1.38%) 22854741 ( 0.18%) 98.35
ipip 287 ( 0.00%) 33110 ( 0.00%) 115.37
ipsec 3056 ( 0.02%) 409536 ( 0.00%) 134.01
ip6 737 ( 0.00%) 95058 ( 0.00%) 128.98
other 11389 ( 0.07%) 1538711 ( 0.01%) 135.11
frag 53449 ( 0.32%) 44395338 ( 0.34%) 830.61
ip6 53273 ( 0.32%) 6256228 ( 0.05%) 117.44
tcp6 39475 ( 0.23%) 3599821 ( 0.03%) 91.19
http(c) 19178 ( 0.11%) 1801518 ( 0.01%) 93.94
smtp 102 ( 0.00%) 15372 ( 0.00%) 150.71
ftp 3358 ( 0.02%) 348090 ( 0.00%) 103.66
pop3 30 ( 0.00%) 2604 ( 0.00%) 86.80
ssh 99 ( 0.00%) 22498 ( 0.00%) 227.25
bgp 374 ( 0.00%) 32498 ( 0.00%) 86.89
other 16334 ( 0.10%) 1377241 ( 0.01%) 84.32
udp6 8825 ( 0.05%) 1975734 ( 0.02%) 223.88
dns 6832 ( 0.04%) 1365342 ( 0.01%) 199.85
other 1993 ( 0.01%) 610392 ( 0.00%) 306.27
icmp6 4920 ( 0.03%) 655848 ( 0.01%) 133.30
pim6 31 ( 0.00%) 4216 ( 0.00%) 136.00
other6 22 ( 0.00%) 20609 ( 0.00%) 936.77
tcpdump file: 200810121400.dump.gz (401.66 MB)