Traffic Trace Info
DumpFile: 200901291400.dump
FileSize: 1377.94MB
Id: 200901291400
StartTime: Thu Jan 29 14:00:01 2009
EndTime: Thu Jan 29 14:15:00 2009
TotalTime: 899.58 seconds
TotalCapSize: 1075.11MB CapLen: 96 bytes
# of packets: 19845715 (12914.83MB)
AvgRate: 120.43Mbps stddev:15.59M
IP flow (unique src/dst pair) Information
# of flows: 727536 (avg. 27.28 pkts/flow)
Top 10 big flow size (bytes/total in %):
5.4% 2.0% 1.5% 1.4% 1.2% 1.1% 0.8% 0.8% 0.8% 0.7%
IP address Information
# of IPv4 addresses: 427008
Top 10 bandwidth usage (bytes/total in %):
8.1% 5.5% 5.4% 5.4% 5.1% 3.5% 3.3% 2.8% 2.4% 2.0%
# of IPv6 addresses: 1385
Top 10 bandwidth usage (bytes/total in %):
15.5% 8.5% 6.8% 6.4% 6.0% 5.8% 4.1% 3.9% 3.8% 3.7%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](200901291400.pktlen.png)
detailed numbers
[ 32- 63]: 4423043
[ 64- 127]: 4905745
[ 128- 255]: 899204
[ 256- 511]: 711293
[ 512- 1023]: 678842
[ 1024- 2047]: 8227588
Protocol Breakdown
![[protocol breakdown chart]](200901291400.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 19845715 (100.00%) 13542177640 (100.00%) 682.37
ip 19817856 ( 99.86%) 13537625077 ( 99.97%) 683.10
tcp 15524435 ( 78.23%) 12135806602 ( 89.61%) 781.72
http(s) 5337453 ( 26.89%) 6996427877 ( 51.66%) 1310.82
http(c) 3535378 ( 17.81%) 387003523 ( 2.86%) 109.47
squid 412731 ( 2.08%) 261747527 ( 1.93%) 634.18
smtp 447465 ( 2.25%) 164637856 ( 1.22%) 367.93
nntp 138 ( 0.00%) 15282 ( 0.00%) 110.74
ftp 138321 ( 0.70%) 103060022 ( 0.76%) 745.08
pop3 25277 ( 0.13%) 13349372 ( 0.10%) 528.12
imap 3948 ( 0.02%) 733488 ( 0.01%) 185.79
telnet 31050 ( 0.16%) 2441387 ( 0.02%) 78.63
ssh 135486 ( 0.68%) 20002346 ( 0.15%) 147.63
dns 1953 ( 0.01%) 180551 ( 0.00%) 92.45
bgp 164 ( 0.00%) 62612 ( 0.00%) 381.78
napster 6 ( 0.00%) 372 ( 0.00%) 62.00
realaud 18 ( 0.00%) 3827 ( 0.00%) 212.61
rtsp 149718 ( 0.75%) 160730970 ( 1.19%) 1073.56
icecast 22461 ( 0.11%) 23099102 ( 0.17%) 1028.41
other 5282861 ( 26.62%) 4002310068 ( 29.55%) 757.60
udp 3427257 ( 17.27%) 1310121381 ( 9.67%) 382.27
dns 1497920 ( 7.55%) 262979105 ( 1.94%) 175.56
realaud 14638 ( 0.07%) 7111703 ( 0.05%) 485.84
halflif 41 ( 0.00%) 7448 ( 0.00%) 181.66
starcra 53 ( 0.00%) 9841 ( 0.00%) 185.68
everque 97 ( 0.00%) 17953 ( 0.00%) 185.08
unreal 67 ( 0.00%) 17723 ( 0.00%) 264.52
quake 26 ( 0.00%) 3363 ( 0.00%) 129.35
cuseeme 17 ( 0.00%) 1492 ( 0.00%) 87.76
other 1914248 ( 9.65%) 1039874995 ( 7.68%) 543.23
icmp 771828 ( 3.89%) 66263067 ( 0.49%) 85.85
ipip 316 ( 0.00%) 39584 ( 0.00%) 125.27
ipsec 116 ( 0.00%) 18328 ( 0.00%) 158.00
ip6 2514 ( 0.01%) 491978 ( 0.00%) 195.70
other 91390 ( 0.46%) 24884137 ( 0.18%) 272.29
frag 2150 ( 0.01%) 1840326 ( 0.01%) 855.97
ip6 27859 ( 0.14%) 4552563 ( 0.03%) 163.41
tcp6 6258 ( 0.03%) 1255923 ( 0.01%) 200.69
http(s) 703 ( 0.00%) 485672 ( 0.00%) 690.86
http(c) 2817 ( 0.01%) 353519 ( 0.00%) 125.49
smtp 472 ( 0.00%) 163634 ( 0.00%) 346.68
ftp 54 ( 0.00%) 4947 ( 0.00%) 91.61
ssh 31 ( 0.00%) 3810 ( 0.00%) 122.90
dns 2 ( 0.00%) 158 ( 0.00%) 79.00
bgp 384 ( 0.00%) 34036 ( 0.00%) 88.64
other 1795 ( 0.01%) 210147 ( 0.00%) 117.07
udp6 16945 ( 0.09%) 2628988 ( 0.02%) 155.15
dns 16617 ( 0.08%) 2584974 ( 0.02%) 155.56
starcra 4 ( 0.00%) 540 ( 0.00%) 135.00
other 324 ( 0.00%) 43474 ( 0.00%) 134.18
icmp6 4617 ( 0.02%) 655052 ( 0.00%) 141.88
pim6 31 ( 0.00%) 4216 ( 0.00%) 136.00
other6 8 ( 0.00%) 8384 ( 0.00%) 1048.00
tcpdump file: 200901291400.dump.gz (487.59 MB)