Traffic Trace Info
DumpFile: 200901181400.dump
FileSize: 945.14MB
Id: 200901181400
StartTime: Sun Jan 18 14:00:00 2009
EndTime: Sun Jan 18 14:15:00 2009
TotalTime: 900.11 seconds
TotalCapSize: 737.82MB CapLen: 96 bytes
# of packets: 13586204 (8108.30MB)
AvgRate: 75.59Mbps stddev:15.58M
IP flow (unique src/dst pair) Information
# of flows: 576155 (avg. 23.58 pkts/flow)
Top 10 big flow size (bytes/total in %):
3.6% 3.5% 2.2% 1.9% 1.7% 1.4% 1.3% 1.2% 1.1% 1.0%
IP address Information
# of IPv4 addresses: 354448
Top 10 bandwidth usage (bytes/total in %):
11.5% 6.9% 6.7% 6.3% 3.9% 3.6% 3.6% 3.1% 3.1% 2.8%
# of IPv6 addresses: 1061
Top 10 bandwidth usage (bytes/total in %):
13.7% 12.0% 7.1% 6.9% 6.4% 6.4% 6.4% 5.0% 4.7% 3.7%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](200901181400.pktlen.png)
detailed numbers
[ 32- 63]: 2923395
[ 64- 127]: 3691028
[ 128- 255]: 895052
[ 256- 511]: 416306
[ 512- 1023]: 630149
[ 1024- 2047]: 5030274
Protocol Breakdown
![[protocol breakdown chart]](200901181400.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 13586204 (100.00%) 8502165446 (100.00%) 625.79
ip 13563312 ( 99.83%) 8498564845 ( 99.96%) 626.58
tcp 10362579 ( 76.27%) 7735168614 ( 90.98%) 746.45
http(s) 4073747 ( 29.98%) 5348710856 ( 62.91%) 1312.97
http(c) 2398272 ( 17.65%) 214602349 ( 2.52%) 89.48
squid 326653 ( 2.40%) 182901006 ( 2.15%) 559.92
smtp 230980 ( 1.70%) 43525173 ( 0.51%) 188.44
nntp 4 ( 0.00%) 240 ( 0.00%) 60.00
ftp 197693 ( 1.46%) 199823606 ( 2.35%) 1010.78
pop3 6796 ( 0.05%) 2989566 ( 0.04%) 439.90
imap 2293 ( 0.02%) 446884 ( 0.01%) 194.89
telnet 1284 ( 0.01%) 178219 ( 0.00%) 138.80
ssh 683766 ( 5.03%) 101307442 ( 1.19%) 148.16
dns 1962 ( 0.01%) 161648 ( 0.00%) 82.39
bgp 142 ( 0.00%) 38193 ( 0.00%) 268.96
napster 7 ( 0.00%) 424 ( 0.00%) 60.57
realaud 102 ( 0.00%) 13006 ( 0.00%) 127.51
rtsp 26729 ( 0.20%) 19894798 ( 0.23%) 744.32
icecast 11034 ( 0.08%) 733239 ( 0.01%) 66.45
hotline 5 ( 0.00%) 300 ( 0.00%) 60.00
other 2401109 ( 17.67%) 1619841605 ( 19.05%) 674.62
udp 2786691 ( 20.51%) 723451859 ( 8.51%) 259.61
dns 1108622 ( 8.16%) 215648506 ( 2.54%) 194.52
realaud 2706 ( 0.02%) 166407 ( 0.00%) 61.50
halflif 24 ( 0.00%) 2753 ( 0.00%) 114.71
starcra 211 ( 0.00%) 21239 ( 0.00%) 100.66
everque 145 ( 0.00%) 40377 ( 0.00%) 278.46
unreal 43 ( 0.00%) 13120 ( 0.00%) 305.12
quake 23 ( 0.00%) 1963 ( 0.00%) 85.35
cuseeme 8 ( 0.00%) 927 ( 0.00%) 115.88
other 1674867 ( 12.33%) 507528019 ( 5.97%) 303.03
icmp 380073 ( 2.80%) 35788903 ( 0.42%) 94.16
ipip 326 ( 0.00%) 40294 ( 0.00%) 123.60
ipsec 100 ( 0.00%) 15800 ( 0.00%) 158.00
ip6 17529 ( 0.13%) 2030487 ( 0.02%) 115.84
other 16014 ( 0.12%) 2068888 ( 0.02%) 129.19
frag 1735 ( 0.01%) 1427793 ( 0.02%) 822.94
ip6 22892 ( 0.17%) 3600601 ( 0.04%) 157.29
tcp6 5933 ( 0.04%) 1026300 ( 0.01%) 172.98
http(s) 324 ( 0.00%) 148850 ( 0.00%) 459.41
http(c) 2332 ( 0.02%) 280112 ( 0.00%) 120.12
smtp 1035 ( 0.01%) 350080 ( 0.00%) 338.24
pop3 25 ( 0.00%) 2057 ( 0.00%) 82.28
ssh 24 ( 0.00%) 3068 ( 0.00%) 127.83
bgp 380 ( 0.00%) 32618 ( 0.00%) 85.84
other 1813 ( 0.01%) 209515 ( 0.00%) 115.56
udp6 11141 ( 0.08%) 1677088 ( 0.02%) 150.53
dns 11104 ( 0.08%) 1673026 ( 0.02%) 150.67
realaud 1 ( 0.00%) 104 ( 0.00%) 104.00
everque 1 ( 0.00%) 108 ( 0.00%) 108.00
other 35 ( 0.00%) 3850 ( 0.00%) 110.00
icmp6 5770 ( 0.04%) 875646 ( 0.01%) 151.76
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
other6 18 ( 0.00%) 17487 ( 0.00%) 971.50
tcpdump file: 200901181400.dump.gz (335.13 MB)