Traffic Trace Info
DumpFile: 200901311400.dump
FileSize: 1160.72MB
Id: 200901311400
StartTime: Sat Jan 31 14:00:01 2009
EndTime: Sat Jan 31 14:15:00 2009
TotalTime: 899.23 seconds
TotalCapSize: 905.51MB CapLen: 96 bytes
# of packets: 16724592 (11399.33MB)
AvgRate: 106.33Mbps stddev:12.98M
IP flow (unique src/dst pair) Information
# of flows: 657322 (avg. 25.44 pkts/flow)
Top 10 big flow size (bytes/total in %):
6.9% 3.4% 3.1% 2.5% 2.5% 2.2% 1.7% 1.5% 1.0% 1.0%
IP address Information
# of IPv4 addresses: 399805
Top 10 bandwidth usage (bytes/total in %):
11.5% 8.2% 7.0% 5.8% 4.7% 3.7% 3.5% 3.5% 3.2% 3.2%
# of IPv6 addresses: 1115
Top 10 bandwidth usage (bytes/total in %):
26.0% 26.0% 12.0% 12.0% 9.6% 6.1% 6.1% 5.8% 5.6% 4.3%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](200901311400.pktlen.png)
detailed numbers
[ 32- 63]: 3481383
[ 64- 127]: 4074825
[ 128- 255]: 645404
[ 256- 511]: 587118
[ 512- 1023]: 473503
[ 1024- 2047]: 7462359
Protocol Breakdown
![[protocol breakdown chart]](200901311400.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 16724592 (100.00%) 11953061769 (100.00%) 714.70
ip 16658734 ( 99.61%) 11945989363 ( 99.94%) 717.10
tcp 12861995 ( 76.90%) 10744781104 ( 89.89%) 835.39
http(s) 4941552 ( 29.55%) 6622266386 ( 55.40%) 1340.12
http(c) 2513232 ( 15.03%) 280740830 ( 2.35%) 111.71
squid 237671 ( 1.42%) 160870160 ( 1.35%) 676.86
smtp 267268 ( 1.60%) 72225121 ( 0.60%) 270.23
ftp 65382 ( 0.39%) 32994430 ( 0.28%) 504.64
pop3 12902 ( 0.08%) 2882376 ( 0.02%) 223.41
imap 2452 ( 0.01%) 683915 ( 0.01%) 278.92
telnet 1962 ( 0.01%) 221083 ( 0.00%) 112.68
ssh 91293 ( 0.55%) 36658447 ( 0.31%) 401.55
dns 1676 ( 0.01%) 160985 ( 0.00%) 96.05
bgp 129 ( 0.00%) 43425 ( 0.00%) 336.63
napster 134 ( 0.00%) 8568 ( 0.00%) 63.94
realaud 16 ( 0.00%) 1112 ( 0.00%) 69.50
rtsp 335715 ( 2.01%) 270843509 ( 2.27%) 806.77
icecast 724 ( 0.00%) 87731 ( 0.00%) 121.18
hotline 3 ( 0.00%) 205 ( 0.00%) 68.33
other 4389881 ( 26.25%) 3264092641 ( 27.31%) 743.55
udp 3047690 ( 18.22%) 1073574956 ( 8.98%) 352.26
dns 1352812 ( 8.09%) 268414405 ( 2.25%) 198.41
rip 7 ( 0.00%) 757 ( 0.00%) 108.14
realaud 9868 ( 0.06%) 4112536 ( 0.03%) 416.75
halflif 54 ( 0.00%) 8125 ( 0.00%) 150.46
starcra 159 ( 0.00%) 28643 ( 0.00%) 180.14
everque 8670 ( 0.05%) 7421586 ( 0.06%) 856.01
unreal 1333 ( 0.01%) 1432022 ( 0.01%) 1074.29
quake 46 ( 0.00%) 6062 ( 0.00%) 131.78
cuseeme 8 ( 0.00%) 703 ( 0.00%) 87.88
other 1674007 ( 10.01%) 791982153 ( 6.63%) 473.11
icmp 654820 ( 3.92%) 55951931 ( 0.47%) 85.45
ipip 318 ( 0.00%) 41428 ( 0.00%) 130.28
ip6 52620 ( 0.31%) 66088387 ( 0.55%) 1255.96
other 41291 ( 0.25%) 5551557 ( 0.05%) 134.45
frag 6968 ( 0.04%) 4807855 ( 0.04%) 689.99
ip6 65858 ( 0.39%) 7072406 ( 0.06%) 107.39
tcp6 46361 ( 0.28%) 4215461 ( 0.04%) 90.93
http(s) 520 ( 0.00%) 329471 ( 0.00%) 633.60
http(c) 38820 ( 0.23%) 3028051 ( 0.03%) 78.00
smtp 436 ( 0.00%) 197658 ( 0.00%) 453.34
ftp 2507 ( 0.01%) 256009 ( 0.00%) 102.12
pop3 49 ( 0.00%) 5831 ( 0.00%) 119.00
ssh 62 ( 0.00%) 7496 ( 0.00%) 120.90
dns 12 ( 0.00%) 1180 ( 0.00%) 98.33
bgp 383 ( 0.00%) 33226 ( 0.00%) 86.75
other 3572 ( 0.02%) 356539 ( 0.00%) 99.81
udp6 13749 ( 0.08%) 2041211 ( 0.02%) 148.46
dns 13694 ( 0.08%) 2034565 ( 0.02%) 148.57
everque 1 ( 0.00%) 108 ( 0.00%) 108.00
other 54 ( 0.00%) 6538 ( 0.00%) 121.07
icmp6 5710 ( 0.03%) 811174 ( 0.01%) 142.06
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
other6 8 ( 0.00%) 480 ( 0.00%) 60.00
tcpdump file: 200901311400.dump.gz (395.51 MB)