Traffic Trace Info
DumpFile: 200812191400.dump
FileSize: 1396.65MB
Id: 200812191400
StartTime: Fri Dec 19 14:00:01 2008
EndTime: Fri Dec 19 14:15:01 2008
TotalTime: 899.67 seconds
TotalCapSize: 1090.66MB CapLen: 96 bytes
# of packets: 20052666 (13724.75MB)
AvgRate: 127.97Mbps stddev:14.95M
IP flow (unique src/dst pair) Information
# of flows: 568066 (avg. 35.30 pkts/flow)
Top 10 big flow size (bytes/total in %):
1.8% 1.7% 1.6% 1.5% 1.5% 1.0% 0.9% 0.7% 0.7% 0.7%
IP address Information
# of IPv4 addresses: 341541
Top 10 bandwidth usage (bytes/total in %):
17.1% 16.6% 10.4% 5.5% 3.0% 2.1% 1.8% 1.8% 1.7% 1.6%
# of IPv6 addresses: 1139
Top 10 bandwidth usage (bytes/total in %):
29.9% 27.5% 9.8% 7.5% 5.9% 5.5% 5.5% 4.4% 4.1% 3.4%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](200812191400.pktlen.png)
detailed numbers
[ 32- 63]: 5687728
[ 64- 127]: 3840503
[ 128- 255]: 619491
[ 256- 511]: 498271
[ 512- 1023]: 491167
[ 1024- 2047]: 8915506
Protocol Breakdown
![[protocol breakdown chart]](200812191400.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 20052666 (100.00%) 14391442418 (100.00%) 717.68
ip 20006280 ( 99.77%) 14385525152 ( 99.96%) 719.05
tcp 18001131 ( 89.77%) 13961663984 ( 97.01%) 775.60
http(s) 8218591 ( 40.99%) 11240950718 ( 78.11%) 1367.75
http(c) 5282114 ( 26.34%) 510735457 ( 3.55%) 96.69
squid 635503 ( 3.17%) 351780003 ( 2.44%) 553.55
smtp 704228 ( 3.51%) 108716543 ( 0.76%) 154.38
nntp 105 ( 0.00%) 11017 ( 0.00%) 104.92
ftp 134970 ( 0.67%) 86456715 ( 0.60%) 640.56
pop3 23429 ( 0.12%) 9416061 ( 0.07%) 401.90
imap 3547 ( 0.02%) 628520 ( 0.00%) 177.20
telnet 2302 ( 0.01%) 201692 ( 0.00%) 87.62
ssh 69168 ( 0.34%) 49123201 ( 0.34%) 710.20
dns 2269 ( 0.01%) 181811 ( 0.00%) 80.13
bgp 128 ( 0.00%) 42132 ( 0.00%) 329.16
napster 38 ( 0.00%) 3057 ( 0.00%) 80.45
realaud 11 ( 0.00%) 983 ( 0.00%) 89.36
rtsp 163451 ( 0.82%) 75751313 ( 0.53%) 463.45
icecast 7685 ( 0.04%) 514624 ( 0.00%) 66.96
other 2753589 ( 13.73%) 1527149957 ( 10.61%) 554.60
udp 1532478 ( 7.64%) 370107342 ( 2.57%) 241.51
dns 965160 ( 4.81%) 191804336 ( 1.33%) 198.73
realaud 5552 ( 0.03%) 374462 ( 0.00%) 67.45
halflif 30 ( 0.00%) 3377 ( 0.00%) 112.57
starcra 37 ( 0.00%) 8390 ( 0.00%) 226.76
everque 130 ( 0.00%) 20276 ( 0.00%) 155.97
unreal 968 ( 0.00%) 297484 ( 0.00%) 307.32
quake 307 ( 0.00%) 38861 ( 0.00%) 126.58
cuseeme 10 ( 0.00%) 2179 ( 0.00%) 217.90
other 560206 ( 2.79%) 177497303 ( 1.23%) 316.84
icmp 374295 ( 1.87%) 34244021 ( 0.24%) 91.49
ipip 311 ( 0.00%) 37118 ( 0.00%) 119.35
ipsec 252 ( 0.00%) 39768 ( 0.00%) 157.81
ip6 836 ( 0.00%) 101376 ( 0.00%) 121.26
other 96977 ( 0.48%) 19331543 ( 0.13%) 199.34
frag 2136 ( 0.01%) 1832094 ( 0.01%) 857.72
ip6 46386 ( 0.23%) 5917266 ( 0.04%) 127.57
tcp6 25284 ( 0.13%) 2909039 ( 0.02%) 115.05
http(s) 44 ( 0.00%) 27111 ( 0.00%) 616.16
http(c) 20450 ( 0.10%) 1941585 ( 0.01%) 94.94
smtp 1182 ( 0.01%) 419171 ( 0.00%) 354.63
ftp 34 ( 0.00%) 3136 ( 0.00%) 92.24
ssh 1812 ( 0.01%) 329336 ( 0.00%) 181.75
dns 20 ( 0.00%) 4115 ( 0.00%) 205.75
bgp 385 ( 0.00%) 33691 ( 0.00%) 87.51
other 1357 ( 0.01%) 150894 ( 0.00%) 111.20
udp6 14157 ( 0.07%) 2145741 ( 0.01%) 151.57
dns 14125 ( 0.07%) 2142232 ( 0.01%) 151.66
everque 1 ( 0.00%) 99 ( 0.00%) 99.00
other 31 ( 0.00%) 3410 ( 0.00%) 110.00
icmp6 6902 ( 0.03%) 847600 ( 0.01%) 122.80
pim6 31 ( 0.00%) 4216 ( 0.00%) 136.00
other6 12 ( 0.00%) 10670 ( 0.00%) 889.17
tcpdump file: 200812191400.dump.gz (512.55 MB)