Traffic Trace Info
DumpFile: 200812291400.dump
FileSize: 1058.07MB
Id: 200812291400
StartTime: Mon Dec 29 14:00:00 2008
EndTime: Mon Dec 29 14:15:00 2008
TotalTime: 899.93 seconds
TotalCapSize: 828.95MB CapLen: 96 bytes
# of packets: 15014930 (10921.78MB)
AvgRate: 101.83Mbps stddev:17.37M
IP flow (unique src/dst pair) Information
# of flows: 502579 (avg. 29.88 pkts/flow)
Top 10 big flow size (bytes/total in %):
6.9% 4.3% 3.3% 3.1% 3.1% 1.7% 1.7% 1.5% 1.5% 1.0%
IP address Information
# of IPv4 addresses: 291576
Top 10 bandwidth usage (bytes/total in %):
9.6% 8.8% 7.5% 7.3% 5.1% 4.1% 3.8% 3.5% 3.5% 3.4%
# of IPv6 addresses: 1050
Top 10 bandwidth usage (bytes/total in %):
99.8% 61.6% 38.1% 0.0% 0.0% 0.0% 0.0% 0.0% 0.0% 0.0%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](200812291400.pktlen.png)
detailed numbers
[ 32- 63]: 2837104
[ 64- 127]: 3532824
[ 128- 255]: 634488
[ 256- 511]: 371183
[ 512- 1023]: 392585
[ 1024- 2047]: 7246746
Protocol Breakdown
![[protocol breakdown chart]](200812291400.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 15014930 (100.00%) 11452312088 (100.00%) 762.73
ip 14138872 ( 94.17%) 10174828907 ( 88.85%) 719.64
tcp 10481337 ( 69.81%) 8815033898 ( 76.97%) 841.02
http(s) 4734846 ( 31.53%) 6292435010 ( 54.94%) 1328.96
http(c) 2521663 ( 16.79%) 227560850 ( 1.99%) 90.24
squid 385793 ( 2.57%) 244282646 ( 2.13%) 633.20
smtp 422053 ( 2.81%) 280380655 ( 2.45%) 664.33
nntp 4100 ( 0.03%) 295364 ( 0.00%) 72.04
ftp 136069 ( 0.91%) 103994079 ( 0.91%) 764.27
pop3 18185 ( 0.12%) 4752520 ( 0.04%) 261.34
imap 2148 ( 0.01%) 677208 ( 0.01%) 315.27
telnet 1829 ( 0.01%) 349009 ( 0.00%) 190.82
ssh 68334 ( 0.46%) 12410483 ( 0.11%) 181.62
dns 1653 ( 0.01%) 142537 ( 0.00%) 86.23
bgp 139 ( 0.00%) 45237 ( 0.00%) 325.45
napster 14 ( 0.00%) 868 ( 0.00%) 62.00
rtsp 47011 ( 0.31%) 58484550 ( 0.51%) 1244.06
icecast 500 ( 0.00%) 39464 ( 0.00%) 78.93
hotline 5 ( 0.00%) 785 ( 0.00%) 157.00
other 2136995 ( 14.23%) 1589182633 ( 13.88%) 743.65
udp 3105946 ( 20.69%) 1130740317 ( 9.87%) 364.06
dns 944673 ( 6.29%) 206760347 ( 1.81%) 218.87
rip 2 ( 0.00%) 146 ( 0.00%) 73.00
realaud 8 ( 0.00%) 1361 ( 0.00%) 170.12
halflif 23 ( 0.00%) 2948 ( 0.00%) 128.17
starcra 24 ( 0.00%) 3738 ( 0.00%) 155.75
everque 91 ( 0.00%) 20418 ( 0.00%) 224.37
unreal 19 ( 0.00%) 3038 ( 0.00%) 159.89
quake 26 ( 0.00%) 3003 ( 0.00%) 115.50
cuseeme 9 ( 0.00%) 1321 ( 0.00%) 146.78
other 2161037 ( 14.39%) 923919507 ( 8.07%) 427.54
icmp 407781 ( 2.72%) 36676818 ( 0.32%) 89.94
ipip 333 ( 0.00%) 41778 ( 0.00%) 125.46
ipsec 74 ( 0.00%) 11692 ( 0.00%) 158.00
ip6 131352 ( 0.87%) 190791696 ( 1.67%) 1452.52
other 12049 ( 0.08%) 1532708 ( 0.01%) 127.21
frag 1562 ( 0.01%) 1282567 ( 0.01%) 821.11
ip6 876058 ( 5.83%) 1277483181 ( 11.15%) 1458.22
tcp6 858536 ( 5.72%) 1275042387 ( 11.13%) 1485.14
http(s) 58 ( 0.00%) 4524 ( 0.00%) 78.00
http(c) 2869 ( 0.02%) 320894 ( 0.00%) 111.85
smtp 186 ( 0.00%) 53668 ( 0.00%) 288.54
ftp 59 ( 0.00%) 5504 ( 0.00%) 93.29
ssh 23 ( 0.00%) 3166 ( 0.00%) 137.65
dns 7 ( 0.00%) 635 ( 0.00%) 90.71
bgp 366 ( 0.00%) 30510 ( 0.00%) 83.36
other 854968 ( 5.69%) 1274623486 ( 11.13%) 1490.84
udp6 11032 ( 0.07%) 1610219 ( 0.01%) 145.96
dns 10967 ( 0.07%) 1603073 ( 0.01%) 146.17
quake 1 ( 0.00%) 106 ( 0.00%) 106.00
other 64 ( 0.00%) 7040 ( 0.00%) 110.00
icmp6 6457 ( 0.04%) 823644 ( 0.01%) 127.56
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
other6 3 ( 0.00%) 2851 ( 0.00%) 950.33
tcpdump file: 200812291400.dump.gz (348.09 MB)