Traffic Trace Info
DumpFile: 200902061400.dump
FileSize: 1493.39MB
Id: 200902061400
StartTime: Fri Feb 6 14:00:01 2009
EndTime: Fri Feb 6 14:15:01 2009
TotalTime: 900.11 seconds
TotalCapSize: 1166.39MB CapLen: 96 bytes
# of packets: 21429533 (14253.11MB)
AvgRate: 132.84Mbps stddev:13.00M
IP flow (unique src/dst pair) Information
# of flows: 878437 (avg. 24.40 pkts/flow)
Top 10 big flow size (bytes/total in %):
4.8% 3.3% 1.6% 1.5% 1.4% 1.3% 1.3% 1.0% 1.0% 0.8%
IP address Information
# of IPv4 addresses: 465627
Top 10 bandwidth usage (bytes/total in %):
12.4% 10.0% 7.4% 5.2% 5.0% 4.5% 4.5% 4.3% 3.7% 3.4%
# of IPv6 addresses: 1983
Top 10 bandwidth usage (bytes/total in %):
10.2% 9.2% 8.8% 8.4% 7.3% 6.2% 6.1% 6.1% 6.0% 5.2%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](200902061400.pktlen.png)
detailed numbers
[ 32- 63]: 4916733
[ 64- 127]: 5223216
[ 128- 255]: 773993
[ 256- 511]: 551248
[ 512- 1023]: 653380
[ 1024- 2047]: 9310963
Protocol Breakdown
![[protocol breakdown chart]](200902061400.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 21429533 (100.00%) 14945470798 (100.00%) 697.42
ip 21394098 ( 99.83%) 14937670885 ( 99.95%) 698.21
tcp 17413429 ( 81.26%) 13245780679 ( 88.63%) 760.66
http(s) 6839819 ( 31.92%) 9212402336 ( 61.64%) 1346.88
http(c) 4527813 ( 21.13%) 522738933 ( 3.50%) 115.45
squid 385053 ( 1.80%) 188682171 ( 1.26%) 490.02
smtp 340294 ( 1.59%) 146093652 ( 0.98%) 429.32
nntp 216 ( 0.00%) 22407 ( 0.00%) 103.74
ftp 102023 ( 0.48%) 77052676 ( 0.52%) 755.25
pop3 23587 ( 0.11%) 11246416 ( 0.08%) 476.81
imap 6396 ( 0.03%) 688140 ( 0.00%) 107.59
telnet 2505 ( 0.01%) 360077 ( 0.00%) 143.74
ssh 833200 ( 3.89%) 304099168 ( 2.03%) 364.98
dns 2064 ( 0.01%) 183462 ( 0.00%) 88.89
bgp 138 ( 0.00%) 49451 ( 0.00%) 358.34
napster 2 ( 0.00%) 124 ( 0.00%) 62.00
realaud 11 ( 0.00%) 814 ( 0.00%) 74.00
rtsp 146999 ( 0.69%) 131531254 ( 0.88%) 894.78
icecast 52583 ( 0.25%) 53827171 ( 0.36%) 1023.66
other 4150725 ( 19.37%) 2596802367 ( 17.38%) 625.63
udp 3265097 ( 15.24%) 1606573711 ( 10.75%) 492.04
dns 1247239 ( 5.82%) 261608456 ( 1.75%) 209.75
rip 1 ( 0.00%) 60 ( 0.00%) 60.00
realaud 8677 ( 0.04%) 4073869 ( 0.03%) 469.50
halflif 106 ( 0.00%) 13838 ( 0.00%) 130.55
starcra 46 ( 0.00%) 8267 ( 0.00%) 179.72
everque 781 ( 0.00%) 309762 ( 0.00%) 396.62
unreal 47 ( 0.00%) 19195 ( 0.00%) 408.40
quake 33 ( 0.00%) 3331 ( 0.00%) 100.94
cuseeme 16 ( 0.00%) 2188 ( 0.00%) 136.75
other 2008083 ( 9.37%) 1340503455 ( 8.97%) 667.55
icmp 584025 ( 2.73%) 50040085 ( 0.33%) 85.68
ipip 364 ( 0.00%) 44167 ( 0.00%) 121.34
ipsec 373 ( 0.00%) 120926 ( 0.00%) 324.20
ip6 14586 ( 0.07%) 8381234 ( 0.06%) 574.61
other 116224 ( 0.54%) 26730083 ( 0.18%) 229.99
frag 3362 ( 0.02%) 2722861 ( 0.02%) 809.89
ip6 35435 ( 0.17%) 7799913 ( 0.05%) 220.12
tcp6 9846 ( 0.05%) 3226133 ( 0.02%) 327.66
http(s) 1363 ( 0.01%) 994897 ( 0.01%) 729.93
http(c) 4636 ( 0.02%) 492730 ( 0.00%) 106.28
smtp 1397 ( 0.01%) 1069757 ( 0.01%) 765.75
ftp 52 ( 0.00%) 4775 ( 0.00%) 91.83
ssh 180 ( 0.00%) 29256 ( 0.00%) 162.53
bgp 373 ( 0.00%) 31490 ( 0.00%) 84.42
other 1845 ( 0.01%) 603228 ( 0.00%) 326.95
udp6 20287 ( 0.09%) 3570030 ( 0.02%) 175.98
dns 18803 ( 0.09%) 3146715 ( 0.02%) 167.35
starcra 1 ( 0.00%) 117 ( 0.00%) 117.00
everque 1 ( 0.00%) 104 ( 0.00%) 104.00
other 1482 ( 0.01%) 423094 ( 0.00%) 285.49
icmp6 4866 ( 0.02%) 621277 ( 0.00%) 127.68
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
other6 406 ( 0.00%) 378393 ( 0.00%) 932.00
tcpdump file: 200902061400.dump.gz (533.73 MB)