Traffic Trace Info
DumpFile: 200903201400.dump
FileSize: 837.98MB
Id: 200903201400
StartTime: Fri Mar 20 14:00:01 2009
EndTime: Fri Mar 20 14:15:00 2009
TotalTime: 899.54 seconds
TotalCapSize: 656.98MB CapLen: 96 bytes
# of packets: 11860990 (7521.72MB)
AvgRate: 70.09Mbps stddev:15.34M
IP flow (unique src/dst pair) Information
# of flows: 597856 (avg. 19.84 pkts/flow)
Top 10 big flow size (bytes/total in %):
6.7% 2.2% 1.7% 1.5% 1.3% 1.1% 1.0% 1.0% 1.0% 1.0%
IP address Information
# of IPv4 addresses: 419143
Top 10 bandwidth usage (bytes/total in %):
11.0% 8.3% 7.1% 6.9% 6.4% 5.9% 3.4% 3.3% 2.6% 2.5%
# of IPv6 addresses: 964
Top 10 bandwidth usage (bytes/total in %):
37.4% 25.5% 20.8% 17.2% 12.0% 9.5% 7.0% 6.7% 4.0% 3.3%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](200903201400.pktlen.png)
detailed numbers
[ 32- 63]: 2695858
[ 64- 127]: 3075274
[ 128- 255]: 513366
[ 256- 511]: 355699
[ 512- 1023]: 421044
[ 1024- 2047]: 4799749
Protocol Breakdown
![[protocol breakdown chart]](200903201400.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 11860990 (100.00%) 7887090123 (100.00%) 664.96
ip 11824138 ( 99.69%) 7880318568 ( 99.91%) 666.46
tcp 9741659 ( 82.13%) 7406608686 ( 93.91%) 760.30
http(s) 3867075 ( 32.60%) 5042474023 ( 63.93%) 1303.95
http(c) 2412903 ( 20.34%) 227601153 ( 2.89%) 94.33
squid 465161 ( 3.92%) 228980162 ( 2.90%) 492.26
smtp 267209 ( 2.25%) 99227030 ( 1.26%) 371.35
nntp 64 ( 0.00%) 8580 ( 0.00%) 134.06
ftp 124450 ( 1.05%) 113583094 ( 1.44%) 912.68
pop3 5278 ( 0.04%) 3371467 ( 0.04%) 638.78
imap 3331 ( 0.03%) 574302 ( 0.01%) 172.41
telnet 1051 ( 0.01%) 115104 ( 0.00%) 109.52
ssh 257032 ( 2.17%) 34042453 ( 0.43%) 132.44
dns 1164 ( 0.01%) 99275 ( 0.00%) 85.29
bgp 137 ( 0.00%) 43712 ( 0.00%) 319.07
napster 114 ( 0.00%) 7690 ( 0.00%) 67.46
realaud 48 ( 0.00%) 3432 ( 0.00%) 71.50
rtsp 8303 ( 0.07%) 7831284 ( 0.10%) 943.19
icecast 385 ( 0.00%) 27191 ( 0.00%) 70.63
other 2327952 ( 19.63%) 1648618614 ( 20.90%) 708.18
udp 1335514 ( 11.26%) 390468614 ( 4.95%) 292.37
dns 835327 ( 7.04%) 197891476 ( 2.51%) 236.90
realaud 913 ( 0.01%) 55419 ( 0.00%) 60.70
halflif 17 ( 0.00%) 1975 ( 0.00%) 116.18
starcra 26 ( 0.00%) 4516 ( 0.00%) 173.69
everque 59 ( 0.00%) 12195 ( 0.00%) 206.69
unreal 2528 ( 0.02%) 2212337 ( 0.03%) 875.13
quake 9 ( 0.00%) 1577 ( 0.00%) 175.22
cuseeme 92 ( 0.00%) 13744 ( 0.00%) 149.39
other 496299 ( 4.18%) 190004710 ( 2.41%) 382.84
icmp 670852 ( 5.66%) 56923259 ( 0.72%) 84.85
ipip 300 ( 0.00%) 38256 ( 0.00%) 127.52
ipsec 37 ( 0.00%) 5846 ( 0.00%) 158.00
ip6 24861 ( 0.21%) 4827088 ( 0.06%) 194.16
other 50915 ( 0.43%) 21446819 ( 0.27%) 421.23
frag 3785 ( 0.03%) 4524168 ( 0.06%) 1195.29
ip6 36852 ( 0.31%) 6771555 ( 0.09%) 183.75
tcp6 20734 ( 0.17%) 4450798 ( 0.06%) 214.66
http(s) 2591 ( 0.02%) 1723545 ( 0.02%) 665.20
http(c) 12276 ( 0.10%) 2090463 ( 0.03%) 170.29
smtp 142 ( 0.00%) 62160 ( 0.00%) 437.75
ftp 2500 ( 0.02%) 259806 ( 0.00%) 103.92
ssh 5 ( 0.00%) 782 ( 0.00%) 156.40
bgp 387 ( 0.00%) 33951 ( 0.00%) 87.73
other 2833 ( 0.02%) 280091 ( 0.00%) 98.87
udp6 11978 ( 0.10%) 1760668 ( 0.02%) 146.99
dns 11956 ( 0.10%) 1758248 ( 0.02%) 147.06
other 22 ( 0.00%) 2420 ( 0.00%) 110.00
icmp6 4110 ( 0.03%) 556009 ( 0.01%) 135.28
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
tcpdump file: 200903201400.dump.gz (290.85 MB)