Traffic Trace Info
DumpFile: 200812231400.dump
FileSize: 948.74MB
Id: 200812231400
StartTime: Tue Dec 23 14:00:01 2008
EndTime: Tue Dec 23 14:15:00 2008
TotalTime: 899.31 seconds
TotalCapSize: 741.90MB CapLen: 96 bytes
# of packets: 13555093 (8885.98MB)
AvgRate: 82.87Mbps stddev:10.78M
IP flow (unique src/dst pair) Information
# of flows: 574113 (avg. 23.61 pkts/flow)
Top 10 big flow size (bytes/total in %):
1.8% 1.6% 1.6% 1.4% 1.4% 1.2% 1.2% 1.2% 1.1% 1.0%
IP address Information
# of IPv4 addresses: 350831
Top 10 bandwidth usage (bytes/total in %):
15.7% 11.5% 7.9% 7.0% 5.5% 4.2% 2.7% 2.5% 2.3% 2.2%
# of IPv6 addresses: 1071
Top 10 bandwidth usage (bytes/total in %):
33.1% 30.4% 9.6% 7.2% 5.2% 4.2% 3.8% 3.8% 3.8% 3.7%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](200812231400.pktlen.png)
detailed numbers
[ 32- 63]: 3058422
[ 64- 127]: 3280827
[ 128- 255]: 681148
[ 256- 511]: 481791
[ 512- 1023]: 322269
[ 1024- 2047]: 5730636
Protocol Breakdown
![[protocol breakdown chart]](200812231400.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 13555093 (100.00%) 9317621444 (100.00%) 687.39
ip 13511137 ( 99.68%) 9312264506 ( 99.94%) 689.23
tcp 11103004 ( 81.91%) 8715261804 ( 93.54%) 784.95
http(s) 5222042 ( 38.52%) 7099621664 ( 76.20%) 1359.55
http(c) 2766686 ( 20.41%) 249467980 ( 2.68%) 90.17
squid 531406 ( 3.92%) 237849999 ( 2.55%) 447.59
smtp 344991 ( 2.55%) 66882788 ( 0.72%) 193.87
nntp 271 ( 0.00%) 61177 ( 0.00%) 225.75
ftp 157517 ( 1.16%) 13380216 ( 0.14%) 84.94
pop3 13495 ( 0.10%) 4071148 ( 0.04%) 301.68
imap 3568 ( 0.03%) 965358 ( 0.01%) 270.56
telnet 3050 ( 0.02%) 226227 ( 0.00%) 74.17
ssh 163593 ( 1.21%) 24221950 ( 0.26%) 148.06
dns 2048 ( 0.02%) 175193 ( 0.00%) 85.54
bgp 199 ( 0.00%) 89919 ( 0.00%) 451.85
napster 392 ( 0.00%) 272391 ( 0.00%) 694.88
realaud 18 ( 0.00%) 1405 ( 0.00%) 78.06
rtsp 59782 ( 0.44%) 69616611 ( 0.75%) 1164.51
icecast 511 ( 0.00%) 61094 ( 0.00%) 119.56
hotline 6 ( 0.00%) 1668 ( 0.00%) 278.00
other 1833428 ( 13.53%) 948294956 ( 10.18%) 517.23
udp 2033617 ( 15.00%) 561206542 ( 6.02%) 275.96
dns 1141619 ( 8.42%) 205145030 ( 2.20%) 179.70
realaud 1311 ( 0.01%) 79257 ( 0.00%) 60.46
halflif 29 ( 0.00%) 5872 ( 0.00%) 202.48
starcra 101 ( 0.00%) 15786 ( 0.00%) 156.30
everque 70 ( 0.00%) 12625 ( 0.00%) 180.36
unreal 15 ( 0.00%) 2541 ( 0.00%) 169.40
quake 30 ( 0.00%) 2770 ( 0.00%) 92.33
cuseeme 3 ( 0.00%) 588 ( 0.00%) 196.00
other 890402 ( 6.57%) 355920794 ( 3.82%) 399.73
icmp 344140 ( 2.54%) 31522699 ( 0.34%) 91.60
ipip 328 ( 0.00%) 40404 ( 0.00%) 123.18
ipsec 70 ( 0.00%) 11060 ( 0.00%) 158.00
ip6 848 ( 0.01%) 105370 ( 0.00%) 124.26
other 29130 ( 0.21%) 4116627 ( 0.04%) 141.32
frag 1685 ( 0.01%) 1394111 ( 0.01%) 827.37
ip6 43956 ( 0.32%) 5356938 ( 0.06%) 121.87
tcp6 26553 ( 0.20%) 2866351 ( 0.03%) 107.95
http(s) 352 ( 0.00%) 280052 ( 0.00%) 795.60
http(c) 19719 ( 0.15%) 1877945 ( 0.02%) 95.24
smtp 254 ( 0.00%) 68709 ( 0.00%) 270.51
ftp 7 ( 0.00%) 530 ( 0.00%) 75.71
pop3 42 ( 0.00%) 3371 ( 0.00%) 80.26
imap 2 ( 0.00%) 225 ( 0.00%) 112.50
ssh 1314 ( 0.01%) 204624 ( 0.00%) 155.73
bgp 382 ( 0.00%) 38342 ( 0.00%) 100.37
other 4481 ( 0.03%) 392553 ( 0.00%) 87.60
udp6 11537 ( 0.09%) 1733676 ( 0.02%) 150.27
dns 11524 ( 0.09%) 1732250 ( 0.02%) 150.32
realaud 1 ( 0.00%) 106 ( 0.00%) 106.00
other 12 ( 0.00%) 1320 ( 0.00%) 110.00
icmp6 5829 ( 0.04%) 748291 ( 0.01%) 128.37
pim6 31 ( 0.00%) 4216 ( 0.00%) 136.00
other6 6 ( 0.00%) 4404 ( 0.00%) 734.00
tcpdump file: 200812231400.dump.gz (336.40 MB)