Traffic Trace Info
DumpFile: 200901301400.dump
FileSize: 1120.71MB
Id: 200901301400
StartTime: Fri Jan 30 14:00:00 2009
EndTime: Fri Jan 30 14:15:01 2009
TotalTime: 900.59 seconds
TotalCapSize: 874.20MB CapLen: 96 bytes
# of packets: 16154598 (10126.67MB)
AvgRate: 94.33Mbps stddev:14.03M
IP flow (unique src/dst pair) Information
# of flows: 654728 (avg. 24.67 pkts/flow)
Top 10 big flow size (bytes/total in %):
2.6% 2.1% 1.9% 1.9% 1.5% 1.4% 1.4% 1.3% 1.1% 1.1%
IP address Information
# of IPv4 addresses: 384123
Top 10 bandwidth usage (bytes/total in %):
5.7% 5.3% 4.8% 4.7% 3.3% 3.1% 2.8% 2.6% 2.5% 2.3%
# of IPv6 addresses: 1158
Top 10 bandwidth usage (bytes/total in %):
20.2% 20.2% 11.8% 7.2% 6.8% 5.4% 4.3% 4.0% 4.0% 3.8%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](200901301400.pktlen.png)
detailed numbers
[ 32- 63]: 3990666
[ 64- 127]: 3851118
[ 128- 255]: 745067
[ 256- 511]: 614289
[ 512- 1023]: 495349
[ 1024- 2047]: 6458109
Protocol Breakdown
![[protocol breakdown chart]](200901301400.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 16154598 (100.00%) 10618584555 (100.00%) 657.31
ip 16125402 ( 99.82%) 10612346804 ( 99.94%) 658.11
tcp 12719615 ( 78.74%) 9641834647 ( 90.80%) 758.03
http(s) 5156116 ( 31.92%) 6755485430 ( 63.62%) 1310.19
http(c) 3679813 ( 22.78%) 406623064 ( 3.83%) 110.50
squid 210090 ( 1.30%) 105145450 ( 0.99%) 500.48
smtp 389824 ( 2.41%) 225547735 ( 2.12%) 578.59
nntp 240 ( 0.00%) 22524 ( 0.00%) 93.85
ftp 40920 ( 0.25%) 11713007 ( 0.11%) 286.24
pop3 16130 ( 0.10%) 6881610 ( 0.06%) 426.63
imap 3844 ( 0.02%) 1077966 ( 0.01%) 280.43
telnet 17152 ( 0.11%) 1357941 ( 0.01%) 79.17
ssh 20846 ( 0.13%) 10064846 ( 0.09%) 482.82
dns 2752 ( 0.02%) 388600 ( 0.00%) 141.21
bgp 144 ( 0.00%) 55455 ( 0.00%) 385.10
napster 27 ( 0.00%) 8098 ( 0.00%) 299.93
realaud 24 ( 0.00%) 2767 ( 0.00%) 115.29
rtsp 116208 ( 0.72%) 130912018 ( 1.23%) 1126.53
icecast 31867 ( 0.20%) 30922205 ( 0.29%) 970.35
other 3033617 ( 18.78%) 1955625871 ( 18.42%) 644.65
udp 2744438 ( 16.99%) 889513763 ( 8.38%) 324.12
dns 1413706 ( 8.75%) 282145753 ( 2.66%) 199.58
rip 3 ( 0.00%) 180 ( 0.00%) 60.00
realaud 953 ( 0.01%) 58920 ( 0.00%) 61.83
halflif 29 ( 0.00%) 3786 ( 0.00%) 130.55
starcra 76 ( 0.00%) 12122 ( 0.00%) 159.50
everque 190 ( 0.00%) 54710 ( 0.00%) 287.95
unreal 85 ( 0.00%) 28208 ( 0.00%) 331.86
quake 34 ( 0.00%) 3164 ( 0.00%) 93.06
cuseeme 18 ( 0.00%) 2502 ( 0.00%) 139.00
other 1329241 ( 8.23%) 607184392 ( 5.72%) 456.79
icmp 483008 ( 2.99%) 44620337 ( 0.42%) 92.38
ipip 330 ( 0.00%) 42380 ( 0.00%) 128.42
ipsec 18 ( 0.00%) 3236 ( 0.00%) 179.78
ip6 5647 ( 0.03%) 2178986 ( 0.02%) 385.87
other 172346 ( 1.07%) 34153455 ( 0.32%) 198.17
frag 1771 ( 0.01%) 1432628 ( 0.01%) 808.94
ip6 29196 ( 0.18%) 6237751 ( 0.06%) 213.65
tcp6 7738 ( 0.05%) 2942448 ( 0.03%) 380.26
http(s) 1831 ( 0.01%) 1888170 ( 0.02%) 1031.22
http(c) 2914 ( 0.02%) 352272 ( 0.00%) 120.89
smtp 675 ( 0.00%) 235066 ( 0.00%) 348.25
ftp 54 ( 0.00%) 4947 ( 0.00%) 91.61
imap 2 ( 0.00%) 225 ( 0.00%) 112.50
ssh 398 ( 0.00%) 70304 ( 0.00%) 176.64
dns 7 ( 0.00%) 635 ( 0.00%) 90.71
bgp 391 ( 0.00%) 35411 ( 0.00%) 90.57
other 1466 ( 0.01%) 355418 ( 0.00%) 242.44
udp6 15891 ( 0.10%) 2429701 ( 0.02%) 152.90
dns 15830 ( 0.10%) 2423009 ( 0.02%) 153.06
halflif 1 ( 0.00%) 107 ( 0.00%) 107.00
unreal 2 ( 0.00%) 209 ( 0.00%) 104.50
cuseeme 1 ( 0.00%) 106 ( 0.00%) 106.00
other 57 ( 0.00%) 6270 ( 0.00%) 110.00
icmp6 5526 ( 0.03%) 850651 ( 0.01%) 153.94
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
other6 11 ( 0.00%) 10871 ( 0.00%) 988.27
tcpdump file: 200901301400.dump.gz (394.90 MB)