Traffic Trace Info
DumpFile: 200903061400.dump
FileSize: 1536.39MB
Id: 200903061400
StartTime: Fri Mar 6 14:00:01 2009
EndTime: Fri Mar 6 14:15:01 2009
TotalTime: 900.29 seconds
TotalCapSize: 1195.82MB CapLen: 96 bytes
# of packets: 22319099 (15204.58MB)
AvgRate: 141.67Mbps stddev:12.72M
IP flow (unique src/dst pair) Information
# of flows: 687398 (avg. 32.47 pkts/flow)
Top 10 big flow size (bytes/total in %):
2.3% 2.2% 1.5% 1.4% 1.0% 1.0% 0.9% 0.8% 0.8% 0.8%
IP address Information
# of IPv4 addresses: 424876
Top 10 bandwidth usage (bytes/total in %):
15.0% 14.3% 12.8% 6.5% 3.1% 2.5% 2.3% 2.1% 1.5% 1.5%
# of IPv6 addresses: 1099
Top 10 bandwidth usage (bytes/total in %):
97.6% 97.6% 1.0% 0.7% 0.2% 0.2% 0.1% 0.1% 0.1% 0.1%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](200903061400.pktlen.png)
detailed numbers
[ 32- 63]: 5786787
[ 64- 127]: 4506980
[ 128- 255]: 779191
[ 256- 511]: 732845
[ 512- 1023]: 634799
[ 1024- 2047]: 9878497
Protocol Breakdown
![[protocol breakdown chart]](200903061400.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 22319099 (100.00%) 15943153515 (100.00%) 714.33
ip 22036256 ( 98.73%) 15572729131 ( 97.68%) 706.69
tcp 18077142 ( 80.99%) 14160268697 ( 88.82%) 783.32
http(s) 8391499 ( 37.60%) 11592933718 ( 72.71%) 1381.51
http(c) 6086590 ( 27.27%) 894428087 ( 5.61%) 146.95
squid 690696 ( 3.09%) 306494528 ( 1.92%) 443.75
smtp 218592 ( 0.98%) 75621994 ( 0.47%) 345.95
nntp 124 ( 0.00%) 13582 ( 0.00%) 109.53
ftp 34035 ( 0.15%) 3294935 ( 0.02%) 96.81
pop3 19727 ( 0.09%) 10481431 ( 0.07%) 531.32
imap 4733 ( 0.02%) 732512 ( 0.00%) 154.77
telnet 410 ( 0.00%) 28610 ( 0.00%) 69.78
ssh 231280 ( 1.04%) 26701944 ( 0.17%) 115.45
dns 996 ( 0.00%) 91020 ( 0.00%) 91.39
bgp 189 ( 0.00%) 81757 ( 0.00%) 432.58
napster 9 ( 0.00%) 548 ( 0.00%) 60.89
realaud 2 ( 0.00%) 124 ( 0.00%) 62.00
rtsp 194380 ( 0.87%) 97488044 ( 0.61%) 501.53
icecast 28550 ( 0.13%) 30550330 ( 0.19%) 1070.06
hotline 153 ( 0.00%) 16325 ( 0.00%) 106.70
other 2175177 ( 9.75%) 1121309208 ( 7.03%) 515.50
udp 3232564 ( 14.48%) 1337627141 ( 8.39%) 413.80
dns 1071152 ( 4.80%) 244200101 ( 1.53%) 227.98
rip 1 ( 0.00%) 60 ( 0.00%) 60.00
realaud 8 ( 0.00%) 632 ( 0.00%) 79.00
halflif 38 ( 0.00%) 3868 ( 0.00%) 101.79
starcra 24 ( 0.00%) 4231 ( 0.00%) 176.29
everque 59 ( 0.00%) 13429 ( 0.00%) 227.61
unreal 21 ( 0.00%) 3524 ( 0.00%) 167.81
quake 19 ( 0.00%) 5482 ( 0.00%) 288.53
cuseeme 5 ( 0.00%) 720 ( 0.00%) 144.00
other 2160956 ( 9.68%) 1093323891 ( 6.86%) 505.94
icmp 504152 ( 2.26%) 43809094 ( 0.27%) 86.90
ipip 303 ( 0.00%) 36122 ( 0.00%) 119.21
ipsec 492 ( 0.00%) 317752 ( 0.00%) 645.84
ip6 11291 ( 0.05%) 5195490 ( 0.03%) 460.14
other 210312 ( 0.94%) 25474835 ( 0.16%) 121.13
frag 31889 ( 0.14%) 25379697 ( 0.16%) 795.88
ip6 282843 ( 1.27%) 370424384 ( 2.32%) 1309.65
tcp6 257766 ( 1.15%) 366518131 ( 2.30%) 1421.90
http(s) 4481 ( 0.02%) 3062384 ( 0.02%) 683.42
http(c) 5304 ( 0.02%) 1165229 ( 0.01%) 219.69
smtp 325 ( 0.00%) 116639 ( 0.00%) 358.89
ftp 1973 ( 0.01%) 190336 ( 0.00%) 96.47
ssh 20 ( 0.00%) 2356 ( 0.00%) 117.80
dns 19 ( 0.00%) 1968 ( 0.00%) 103.58
bgp 369 ( 0.00%) 31407 ( 0.00%) 85.11
other 245275 ( 1.10%) 361947812 ( 2.27%) 1475.68
udp6 18523 ( 0.08%) 3007065 ( 0.02%) 162.34
dns 18497 ( 0.08%) 3004200 ( 0.02%) 162.42
halflif 1 ( 0.00%) 106 ( 0.00%) 106.00
everque 1 ( 0.00%) 113 ( 0.00%) 113.00
quake 1 ( 0.00%) 116 ( 0.00%) 116.00
other 23 ( 0.00%) 2530 ( 0.00%) 110.00
icmp6 6497 ( 0.03%) 867841 ( 0.01%) 133.58
pim6 31 ( 0.00%) 4216 ( 0.00%) 136.00
other6 26 ( 0.00%) 27131 ( 0.00%) 1043.50
tcpdump file: 200903061400.dump.gz (552.19 MB)