Traffic Trace Info
DumpFile: 200812261400.dump
FileSize: 1165.56MB
Id: 200812261400
StartTime: Fri Dec 26 14:00:01 2008
EndTime: Fri Dec 26 14:15:01 2008
TotalTime: 899.98 seconds
TotalCapSize: 913.45MB CapLen: 96 bytes
# of packets: 16521321 (10981.44MB)
AvgRate: 102.34Mbps stddev:12.17M
IP flow (unique src/dst pair) Information
# of flows: 675125 (avg. 24.47 pkts/flow)
Top 10 big flow size (bytes/total in %):
4.7% 3.7% 3.3% 2.4% 2.3% 2.1% 1.8% 1.7% 1.7% 0.9%
IP address Information
# of IPv4 addresses: 403825
Top 10 bandwidth usage (bytes/total in %):
14.0% 8.7% 8.1% 7.3% 5.2% 5.0% 4.8% 3.9% 3.9% 3.3%
# of IPv6 addresses: 1124
Top 10 bandwidth usage (bytes/total in %):
99.0% 66.0% 33.0% 0.3% 0.3% 0.1% 0.1% 0.1% 0.1% 0.0%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](200812261400.pktlen.png)
detailed numbers
[ 32- 63]: 4229027
[ 64- 127]: 3688645
[ 128- 255]: 657260
[ 256- 511]: 425929
[ 512- 1023]: 403567
[ 1024- 2047]: 7116893
Protocol Breakdown
![[protocol breakdown chart]](200812261400.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 16521321 (100.00%) 11514876240 (100.00%) 696.97
ip 16093525 ( 97.41%) 10934126350 ( 94.96%) 679.41
tcp 13511940 ( 81.78%) 10380355117 ( 90.15%) 768.24
http(s) 4955890 ( 30.00%) 6621030060 ( 57.50%) 1335.99
http(c) 3470888 ( 21.01%) 634477931 ( 5.51%) 182.80
squid 625074 ( 3.78%) 338066497 ( 2.94%) 540.84
smtp 275800 ( 1.67%) 64978248 ( 0.56%) 235.60
ftp 60556 ( 0.37%) 9009191 ( 0.08%) 148.77
pop3 23405 ( 0.14%) 4369440 ( 0.04%) 186.69
imap 2381 ( 0.01%) 265356 ( 0.00%) 111.45
telnet 280 ( 0.00%) 33439 ( 0.00%) 119.42
ssh 23668 ( 0.14%) 6964016 ( 0.06%) 294.24
dns 1876 ( 0.01%) 162269 ( 0.00%) 86.50
bgp 156 ( 0.00%) 57905 ( 0.00%) 371.19
napster 126 ( 0.00%) 9907 ( 0.00%) 78.63
realaud 13 ( 0.00%) 3047 ( 0.00%) 234.38
rtsp 112861 ( 0.68%) 50918135 ( 0.44%) 451.16
icecast 19161 ( 0.12%) 15700439 ( 0.14%) 819.40
hotline 5 ( 0.00%) 749 ( 0.00%) 149.80
other 3939797 ( 23.85%) 2634308308 ( 22.88%) 668.64
udp 1977349 ( 11.97%) 494434428 ( 4.29%) 250.05
dns 1257322 ( 7.61%) 221629832 ( 1.92%) 176.27
realaud 25 ( 0.00%) 2699 ( 0.00%) 107.96
halflif 27 ( 0.00%) 2600 ( 0.00%) 96.30
starcra 25 ( 0.00%) 4903 ( 0.00%) 196.12
everque 86 ( 0.00%) 15203 ( 0.00%) 176.78
unreal 14 ( 0.00%) 2133 ( 0.00%) 152.36
quake 17 ( 0.00%) 1386 ( 0.00%) 81.53
cuseeme 7 ( 0.00%) 703 ( 0.00%) 100.43
other 719801 ( 4.36%) 272760482 ( 2.37%) 378.94
icmp 570989 ( 3.46%) 51694653 ( 0.45%) 90.54
ipip 311 ( 0.00%) 37442 ( 0.00%) 120.39
ipsec 11061 ( 0.07%) 3210838 ( 0.03%) 290.28
ip6 3994 ( 0.02%) 1181954 ( 0.01%) 295.93
other 17881 ( 0.11%) 3211918 ( 0.03%) 179.63
frag 1753 ( 0.01%) 1422867 ( 0.01%) 811.68
ip6 427796 ( 2.59%) 580749890 ( 5.04%) 1357.54
tcp6 407727 ( 2.47%) 577659399 ( 5.02%) 1416.78
http(s) 547 ( 0.00%) 454248 ( 0.00%) 830.44
http(c) 20073 ( 0.12%) 1929502 ( 0.02%) 96.12
smtp 258 ( 0.00%) 83002 ( 0.00%) 321.71
ftp 34 ( 0.00%) 3136 ( 0.00%) 92.24
ssh 10 ( 0.00%) 1548 ( 0.00%) 154.80
dns 22 ( 0.00%) 6880 ( 0.00%) 312.73
bgp 392 ( 0.00%) 34507 ( 0.00%) 88.03
other 386391 ( 2.34%) 575146576 ( 4.99%) 1488.51
udp6 13811 ( 0.08%) 2141785 ( 0.02%) 155.08
dns 13767 ( 0.08%) 2136950 ( 0.02%) 155.22
cuseeme 1 ( 0.00%) 105 ( 0.00%) 105.00
other 43 ( 0.00%) 4730 ( 0.00%) 110.00
icmp6 6218 ( 0.04%) 935333 ( 0.01%) 150.42
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
other6 10 ( 0.00%) 9293 ( 0.00%) 929.30
tcpdump file: 200812261400.dump.gz (404.48 MB)