Traffic Trace Info
DumpFile: 200901251400.dump
FileSize: 917.12MB
Id: 200901251400
StartTime: Sun Jan 25 14:00:01 2009
EndTime: Sun Jan 25 14:15:01 2009
TotalTime: 899.84 seconds
TotalCapSize: 712.84MB CapLen: 96 bytes
# of packets: 13387258 (7429.47MB)
AvgRate: 69.27Mbps stddev:12.48M
IP flow (unique src/dst pair) Information
# of flows: 674284 (avg. 19.85 pkts/flow)
Top 10 big flow size (bytes/total in %):
3.7% 1.9% 1.4% 1.2% 1.2% 1.0% 0.9% 0.9% 0.9% 0.9%
IP address Information
# of IPv4 addresses: 400974
Top 10 bandwidth usage (bytes/total in %):
6.5% 6.2% 6.2% 5.2% 3.8% 3.8% 2.9% 2.8% 2.6% 2.6%
# of IPv6 addresses: 1053
Top 10 bandwidth usage (bytes/total in %):
18.4% 16.0% 16.0% 9.1% 9.1% 9.1% 8.8% 7.1% 6.7% 3.8%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](200901251400.pktlen.png)
detailed numbers
[ 32- 63]: 3161364
[ 64- 127]: 3989936
[ 128- 255]: 681627
[ 256- 511]: 472912
[ 512- 1023]: 458993
[ 1024- 2047]: 4622426
Protocol Breakdown
![[protocol breakdown chart]](200901251400.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 13387258 (100.00%) 7790359000 (100.00%) 581.92
ip 13355732 ( 99.76%) 7785767035 ( 99.94%) 582.95
tcp 9352075 ( 69.86%) 6500659070 ( 83.44%) 695.10
http(s) 3677490 ( 27.47%) 4718609011 ( 60.57%) 1283.11
http(c) 2199121 ( 16.43%) 220424815 ( 2.83%) 100.23
squid 340531 ( 2.54%) 178938992 ( 2.30%) 525.47
smtp 328101 ( 2.45%) 48421192 ( 0.62%) 147.58
ftp 69762 ( 0.52%) 22565620 ( 0.29%) 323.47
pop3 6158 ( 0.05%) 2503125 ( 0.03%) 406.48
imap 2975 ( 0.02%) 837164 ( 0.01%) 281.40
telnet 1206 ( 0.01%) 83944 ( 0.00%) 69.61
ssh 459094 ( 3.43%) 69849034 ( 0.90%) 152.15
dns 2239 ( 0.02%) 194001 ( 0.00%) 86.65
bgp 132 ( 0.00%) 47494 ( 0.00%) 359.80
napster 8 ( 0.00%) 494 ( 0.00%) 61.75
realaud 392 ( 0.00%) 52229 ( 0.00%) 133.24
rtsp 74543 ( 0.56%) 75019657 ( 0.96%) 1006.39
icecast 26355 ( 0.20%) 23126361 ( 0.30%) 877.49
hotline 102 ( 0.00%) 9245 ( 0.00%) 90.64
other 2163791 ( 16.16%) 1139972192 ( 14.63%) 526.84
udp 3347258 ( 25.00%) 1189754008 ( 15.27%) 355.44
dns 1243323 ( 9.29%) 225568798 ( 2.90%) 181.42
rip 3 ( 0.00%) 180 ( 0.00%) 60.00
realaud 2482 ( 0.02%) 248598 ( 0.00%) 100.16
halflif 22 ( 0.00%) 2415 ( 0.00%) 109.77
starcra 31 ( 0.00%) 5817 ( 0.00%) 187.65
everque 93 ( 0.00%) 16462 ( 0.00%) 177.01
unreal 23 ( 0.00%) 4120 ( 0.00%) 179.13
quake 20 ( 0.00%) 1786 ( 0.00%) 89.30
cuseeme 4 ( 0.00%) 287 ( 0.00%) 71.75
other 2100977 ( 15.69%) 963862997 ( 12.37%) 458.77
icmp 620737 ( 4.64%) 90096123 ( 1.16%) 145.14
ipip 318 ( 0.00%) 40784 ( 0.00%) 128.25
ip6 1287 ( 0.01%) 209900 ( 0.00%) 163.09
other 34057 ( 0.25%) 5007150 ( 0.06%) 147.02
frag 3866 ( 0.03%) 3047035 ( 0.04%) 788.16
ip6 31526 ( 0.24%) 4591965 ( 0.06%) 145.66
tcp6 10354 ( 0.08%) 1631602 ( 0.02%) 157.58
http(s) 858 ( 0.01%) 543273 ( 0.01%) 633.19
http(c) 3266 ( 0.02%) 429093 ( 0.01%) 131.38
smtp 214 ( 0.00%) 44333 ( 0.00%) 207.16
ftp 2336 ( 0.02%) 247631 ( 0.00%) 106.01
pop3 25 ( 0.00%) 2057 ( 0.00%) 82.28
ssh 37 ( 0.00%) 3534 ( 0.00%) 95.51
bgp 384 ( 0.00%) 34135 ( 0.00%) 88.89
other 3234 ( 0.02%) 327546 ( 0.00%) 101.28
udp6 16667 ( 0.12%) 2263703 ( 0.03%) 135.82
dns 16631 ( 0.12%) 2259748 ( 0.03%) 135.88
unreal 1 ( 0.00%) 111 ( 0.00%) 111.00
quake 1 ( 0.00%) 104 ( 0.00%) 104.00
other 34 ( 0.00%) 3740 ( 0.00%) 110.00
icmp6 4473 ( 0.03%) 692384 ( 0.01%) 154.79
pim6 31 ( 0.00%) 4216 ( 0.00%) 136.00
other6 1 ( 0.00%) 60 ( 0.00%) 60.00
tcpdump file: 200901251400.dump.gz (335.41 MB)