Traffic Trace Info
DumpFile: 200901261400.dump
FileSize: 1350.01MB
Id: 200901261400
StartTime: Mon Jan 26 14:00:00 2009
EndTime: Mon Jan 26 14:15:00 2009
TotalTime: 899.84 seconds
TotalCapSize: 1051.63MB CapLen: 96 bytes
# of packets: 19554075 (12509.16MB)
AvgRate: 116.60Mbps stddev:29.34M
IP flow (unique src/dst pair) Information
# of flows: 504555 (avg. 38.76 pkts/flow)
Top 10 big flow size (bytes/total in %):
8.2% 5.7% 2.8% 1.9% 1.9% 1.8% 1.6% 1.6% 1.4% 1.4%
IP address Information
# of IPv4 addresses: 284481
Top 10 bandwidth usage (bytes/total in %):
11.4% 8.3% 8.3% 7.7% 7.6% 6.0% 4.3% 4.2% 3.3% 2.9%
# of IPv6 addresses: 1110
Top 10 bandwidth usage (bytes/total in %):
16.5% 11.6% 8.5% 6.6% 6.5% 5.8% 5.8% 4.2% 3.9% 3.6%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](200901261400.pktlen.png)
detailed numbers
[ 32- 63]: 4559418
[ 64- 127]: 5227456
[ 128- 255]: 753041
[ 256- 511]: 454739
[ 512- 1023]: 441182
[ 1024- 2047]: 8118239
Protocol Breakdown
![[protocol breakdown chart]](200901261400.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 19554075 (100.00%) 13116808974 (100.00%) 670.80
ip 19525783 ( 99.86%) 13112300581 ( 99.97%) 671.54
tcp 14990829 ( 76.66%) 12103269864 ( 92.27%) 807.38
http(s) 5932102 ( 30.34%) 7863925713 ( 59.95%) 1325.66
http(c) 4170019 ( 21.33%) 461173100 ( 3.52%) 110.59
squid 340546 ( 1.74%) 235399732 ( 1.79%) 691.24
smtp 245651 ( 1.26%) 72794591 ( 0.55%) 296.33
nntp 30 ( 0.00%) 2422 ( 0.00%) 80.73
ftp 232373 ( 1.19%) 239066251 ( 1.82%) 1028.80
pop3 13976 ( 0.07%) 3975601 ( 0.03%) 284.46
imap 4462 ( 0.02%) 945178 ( 0.01%) 211.83
telnet 404 ( 0.00%) 36885 ( 0.00%) 91.30
ssh 641633 ( 3.28%) 140694233 ( 1.07%) 219.28
dns 4653 ( 0.02%) 354115 ( 0.00%) 76.10
bgp 162 ( 0.00%) 62395 ( 0.00%) 385.15
napster 14 ( 0.00%) 1480 ( 0.00%) 105.71
realaud 484 ( 0.00%) 63949 ( 0.00%) 132.13
rtsp 184786 ( 0.94%) 218566596 ( 1.67%) 1182.81
icecast 2161 ( 0.01%) 192544 ( 0.00%) 89.10
other 3217373 ( 16.45%) 2866015079 ( 21.85%) 890.79
udp 3714442 ( 19.00%) 935903628 ( 7.14%) 251.96
dns 1394542 ( 7.13%) 251123272 ( 1.91%) 180.08
rip 6 ( 0.00%) 360 ( 0.00%) 60.00
realaud 12145 ( 0.06%) 7923887 ( 0.06%) 652.44
halflif 51 ( 0.00%) 6133 ( 0.00%) 120.25
starcra 24 ( 0.00%) 4220 ( 0.00%) 175.83
everque 113 ( 0.00%) 39875 ( 0.00%) 352.88
unreal 17 ( 0.00%) 1773 ( 0.00%) 104.29
quake 22 ( 0.00%) 2197 ( 0.00%) 99.86
cuseeme 7 ( 0.00%) 480 ( 0.00%) 68.57
other 2305859 ( 11.79%) 676666601 ( 5.16%) 293.46
icmp 698415 ( 3.57%) 57877257 ( 0.44%) 82.87
ipip 323 ( 0.00%) 41410 ( 0.00%) 128.20
ipsec 132 ( 0.00%) 20520 ( 0.00%) 155.45
ip6 2911 ( 0.01%) 1127992 ( 0.01%) 387.49
other 118731 ( 0.61%) 14059910 ( 0.11%) 118.42
frag 5703 ( 0.03%) 4172546 ( 0.03%) 731.64
ip6 28292 ( 0.14%) 4508393 ( 0.03%) 159.35
tcp6 8235 ( 0.04%) 1515186 ( 0.01%) 183.99
http(s) 907 ( 0.00%) 608451 ( 0.00%) 670.84
http(c) 2526 ( 0.01%) 338473 ( 0.00%) 134.00
squid 2 ( 0.00%) 148 ( 0.00%) 74.00
smtp 454 ( 0.00%) 112059 ( 0.00%) 246.83
ftp 282 ( 0.00%) 30509 ( 0.00%) 108.19
ssh 48 ( 0.00%) 4832 ( 0.00%) 100.67
bgp 358 ( 0.00%) 29524 ( 0.00%) 82.47
icecast 1 ( 0.00%) 74 ( 0.00%) 74.00
other 3657 ( 0.02%) 391116 ( 0.00%) 106.95
udp6 15607 ( 0.08%) 2341910 ( 0.02%) 150.06
dns 15590 ( 0.08%) 2339988 ( 0.02%) 150.10
everque 1 ( 0.00%) 119 ( 0.00%) 119.00
quake 1 ( 0.00%) 95 ( 0.00%) 95.00
other 15 ( 0.00%) 1708 ( 0.00%) 113.87
icmp6 4418 ( 0.02%) 644962 ( 0.00%) 145.99
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
other6 2 ( 0.00%) 2255 ( 0.00%) 1127.50
tcpdump file: 200901261400.dump.gz (459.63 MB)