Traffic Trace Info
DumpFile: 200901271400.dump
FileSize: 1453.80MB
Id: 200901271400
StartTime: Tue Jan 27 14:00:00 2009
EndTime: Tue Jan 27 14:15:00 2009
TotalTime: 900.08 seconds
TotalCapSize: 1131.08MB CapLen: 96 bytes
# of packets: 21149183 (13629.12MB)
AvgRate: 127.02Mbps stddev:13.27M
IP flow (unique src/dst pair) Information
# of flows: 610170 (avg. 34.66 pkts/flow)
Top 10 big flow size (bytes/total in %):
3.9% 1.5% 1.4% 1.2% 1.2% 1.2% 0.9% 0.9% 0.9% 0.9%
IP address Information
# of IPv4 addresses: 357647
Top 10 bandwidth usage (bytes/total in %):
5.6% 5.6% 5.3% 4.4% 4.1% 4.0% 4.0% 3.2% 2.7% 2.4%
# of IPv6 addresses: 1136
Top 10 bandwidth usage (bytes/total in %):
13.7% 8.8% 8.5% 7.7% 5.8% 5.2% 5.0% 4.9% 4.8% 4.7%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](200901271400.pktlen.png)
detailed numbers
[ 32- 63]: 4114618
[ 64- 127]: 5986305
[ 128- 255]: 1087729
[ 256- 511]: 501056
[ 512- 1023]: 735930
[ 1024- 2047]: 8723545
Protocol Breakdown
![[protocol breakdown chart]](200901271400.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 21149183 (100.00%) 14291171357 (100.00%) 675.73
ip 21109334 ( 99.81%) 14285062423 ( 99.96%) 676.72
tcp 15827746 ( 74.84%) 12487197065 ( 87.38%) 788.94
http(s) 6083104 ( 28.76%) 8096620218 ( 56.65%) 1331.00
http(c) 3866202 ( 18.28%) 640522240 ( 4.48%) 165.67
squid 282798 ( 1.34%) 192262578 ( 1.35%) 679.86
smtp 376433 ( 1.78%) 181474751 ( 1.27%) 482.09
ftp 132163 ( 0.62%) 108448532 ( 0.76%) 820.57
pop3 40309 ( 0.19%) 14498993 ( 0.10%) 359.70
imap 4162 ( 0.02%) 973296 ( 0.01%) 233.85
telnet 2728 ( 0.01%) 338390 ( 0.00%) 124.04
ssh 1061757 ( 5.02%) 158361040 ( 1.11%) 149.15
dns 2898 ( 0.01%) 229473 ( 0.00%) 79.18
bgp 146 ( 0.00%) 57537 ( 0.00%) 394.09
napster 8 ( 0.00%) 488 ( 0.00%) 61.00
realaud 71 ( 0.00%) 6215 ( 0.00%) 87.54
rtsp 12138 ( 0.06%) 8060225 ( 0.06%) 664.05
icecast 25785 ( 0.12%) 23390282 ( 0.16%) 907.13
other 3937041 ( 18.62%) 3061952627 ( 21.43%) 777.73
udp 4609817 ( 21.80%) 1704637694 ( 11.93%) 369.78
dns 1356988 ( 6.42%) 220533524 ( 1.54%) 162.52
realaud 1812 ( 0.01%) 109117 ( 0.00%) 60.22
halflif 35 ( 0.00%) 4163 ( 0.00%) 118.94
starcra 191 ( 0.00%) 18361 ( 0.00%) 96.13
everque 9695 ( 0.05%) 870877 ( 0.01%) 89.83
unreal 9 ( 0.00%) 1720 ( 0.00%) 191.11
quake 24 ( 0.00%) 2620 ( 0.00%) 109.17
cuseeme 2 ( 0.00%) 195 ( 0.00%) 97.50
other 3240367 ( 15.32%) 1482914261 ( 10.38%) 457.64
icmp 530072 ( 2.51%) 51916667 ( 0.36%) 97.94
ipip 305 ( 0.00%) 37262 ( 0.00%) 122.17
ipsec 130 ( 0.00%) 20764 ( 0.00%) 159.72
ip6 16523 ( 0.08%) 13544597 ( 0.09%) 819.74
other 124741 ( 0.59%) 27708374 ( 0.19%) 222.13
frag 32971 ( 0.16%) 25824307 ( 0.18%) 783.24
ip6 39849 ( 0.19%) 6108934 ( 0.04%) 153.30
tcp6 16472 ( 0.08%) 2660232 ( 0.02%) 161.50
http(s) 652 ( 0.00%) 549112 ( 0.00%) 842.20
http(c) 6160 ( 0.03%) 567477 ( 0.00%) 92.12
smtp 1201 ( 0.01%) 403602 ( 0.00%) 336.05
ftp 54 ( 0.00%) 4947 ( 0.00%) 91.61
imap 36 ( 0.00%) 4499 ( 0.00%) 124.97
ssh 233 ( 0.00%) 70854 ( 0.00%) 304.09
bgp 366 ( 0.00%) 31026 ( 0.00%) 84.77
other 7770 ( 0.04%) 1028715 ( 0.01%) 132.40
udp6 16415 ( 0.08%) 2488534 ( 0.02%) 151.60
dns 16399 ( 0.08%) 2486773 ( 0.02%) 151.64
realaud 1 ( 0.00%) 106 ( 0.00%) 106.00
halflif 1 ( 0.00%) 109 ( 0.00%) 109.00
everque 1 ( 0.00%) 117 ( 0.00%) 117.00
quake 1 ( 0.00%) 109 ( 0.00%) 109.00
other 12 ( 0.00%) 1320 ( 0.00%) 110.00
icmp6 6926 ( 0.03%) 950272 ( 0.01%) 137.20
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
other6 6 ( 0.00%) 5816 ( 0.00%) 969.33
tcpdump file: 200901271400.dump.gz (518.45 MB)