Traffic Trace Info
DumpFile: 200901201400.dump
FileSize: 1445.66MB
Id: 200901201400
StartTime: Tue Jan 20 14:00:00 2009
EndTime: Tue Jan 20 14:15:01 2009
TotalTime: 900.48 seconds
TotalCapSize: 1131.64MB CapLen: 96 bytes
# of packets: 20579304 (12848.10MB)
AvgRate: 119.69Mbps stddev:14.51M
IP flow (unique src/dst pair) Information
# of flows: 738258 (avg. 27.88 pkts/flow)
Top 10 big flow size (bytes/total in %):
4.9% 4.3% 2.3% 1.9% 1.9% 1.4% 1.3% 1.1% 1.1% 0.9%
IP address Information
# of IPv4 addresses: 401643
Top 10 bandwidth usage (bytes/total in %):
5.8% 5.4% 5.0% 5.0% 4.6% 4.4% 4.3% 3.6% 2.4% 2.3%
# of IPv6 addresses: 1190
Top 10 bandwidth usage (bytes/total in %):
18.9% 14.7% 9.9% 8.0% 6.2% 5.3% 3.9% 3.6% 3.5% 3.5%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](200901201400.pktlen.png)
detailed numbers
[ 32- 63]: 4878142
[ 64- 127]: 5496919
[ 128- 255]: 757779
[ 256- 511]: 640339
[ 512- 1023]: 686583
[ 1024- 2047]: 8119542
Protocol Breakdown
![[protocol breakdown chart]](200901201400.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 20579304 (100.00%) 13472212612 (100.00%) 654.65
ip 20551612 ( 99.87%) 13466845312 ( 99.96%) 655.27
tcp 17067875 ( 82.94%) 12454045746 ( 92.44%) 729.68
http(s) 5956269 ( 28.94%) 7807772499 ( 57.95%) 1310.85
http(c) 5576166 ( 27.10%) 1044206363 ( 7.75%) 187.26
squid 780473 ( 3.79%) 522651361 ( 3.88%) 669.66
smtp 460967 ( 2.24%) 117879431 ( 0.87%) 255.72
ftp 79107 ( 0.38%) 30478060 ( 0.23%) 385.28
pop3 19704 ( 0.10%) 8073856 ( 0.06%) 409.76
imap 8204 ( 0.04%) 1627764 ( 0.01%) 198.41
telnet 3551 ( 0.02%) 570283 ( 0.00%) 160.60
ssh 161801 ( 0.79%) 27827687 ( 0.21%) 171.99
dns 2375 ( 0.01%) 199715 ( 0.00%) 84.09
bgp 136 ( 0.00%) 43843 ( 0.00%) 322.38
napster 13 ( 0.00%) 1706 ( 0.00%) 131.23
realaud 9 ( 0.00%) 1001 ( 0.00%) 111.22
rtsp 146526 ( 0.71%) 85907897 ( 0.64%) 586.30
icecast 12374 ( 0.06%) 8039318 ( 0.06%) 649.69
other 3860200 ( 18.76%) 2798764962 ( 20.77%) 725.03
udp 2853744 ( 13.87%) 940045344 ( 6.98%) 329.41
dns 1466162 ( 7.12%) 278767239 ( 2.07%) 190.13
rip 2 ( 0.00%) 120 ( 0.00%) 60.00
realaud 9169 ( 0.04%) 6675483 ( 0.05%) 728.05
halflif 30 ( 0.00%) 3004 ( 0.00%) 100.13
starcra 46 ( 0.00%) 7847 ( 0.00%) 170.59
everque 120 ( 0.00%) 21300 ( 0.00%) 177.50
unreal 162 ( 0.00%) 47898 ( 0.00%) 295.67
quake 50 ( 0.00%) 4186 ( 0.00%) 83.72
cuseeme 22 ( 0.00%) 2877 ( 0.00%) 130.77
other 1377945 ( 6.70%) 654495975 ( 4.86%) 474.98
icmp 463762 ( 2.25%) 43770966 ( 0.32%) 94.38
ipip 336 ( 0.00%) 42943 ( 0.00%) 127.81
ipsec 1782 ( 0.01%) 395444 ( 0.00%) 221.91
ip6 3387 ( 0.02%) 1279057 ( 0.01%) 377.64
other 160726 ( 0.78%) 27265812 ( 0.20%) 169.64
frag 1732 ( 0.01%) 1423049 ( 0.01%) 821.62
ip6 27692 ( 0.13%) 5367300 ( 0.04%) 193.82
tcp6 6619 ( 0.03%) 2070471 ( 0.02%) 312.81
http(s) 1241 ( 0.01%) 1383935 ( 0.01%) 1115.18
http(c) 3044 ( 0.01%) 364461 ( 0.00%) 119.73
smtp 236 ( 0.00%) 61143 ( 0.00%) 259.08
ftp 58 ( 0.00%) 5330 ( 0.00%) 91.90
ssh 76 ( 0.00%) 33544 ( 0.00%) 441.37
bgp 377 ( 0.00%) 32692 ( 0.00%) 86.72
other 1587 ( 0.01%) 189366 ( 0.00%) 119.32
udp6 15500 ( 0.08%) 2456756 ( 0.02%) 158.50
dns 15481 ( 0.08%) 2454671 ( 0.02%) 158.56
unreal 1 ( 0.00%) 106 ( 0.00%) 106.00
quake 1 ( 0.00%) 109 ( 0.00%) 109.00
other 17 ( 0.00%) 1870 ( 0.00%) 110.00
icmp6 5534 ( 0.03%) 829113 ( 0.01%) 149.82
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
other6 9 ( 0.00%) 6880 ( 0.00%) 764.44
tcpdump file: 200901201400.dump.gz (511.02 MB)