Traffic Trace Info
DumpFile: 200903221400.dump
FileSize: 867.10MB
Id: 200903221400
StartTime: Sun Mar 22 14:00:00 2009
EndTime: Sun Mar 22 14:15:00 2009
TotalTime: 899.67 seconds
TotalCapSize: 678.02MB CapLen: 96 bytes
# of packets: 12390607 (8781.57MB)
AvgRate: 81.88Mbps stddev:17.20M
IP flow (unique src/dst pair) Information
# of flows: 506892 (avg. 24.44 pkts/flow)
Top 10 big flow size (bytes/total in %):
10.2% 4.7% 1.7% 1.5% 1.3% 0.9% 0.9% 0.8% 0.8% 0.8%
IP address Information
# of IPv4 addresses: 337264
Top 10 bandwidth usage (bytes/total in %):
13.0% 12.7% 10.2% 10.2% 5.6% 5.4% 4.7% 3.1% 3.0% 2.1%
# of IPv6 addresses: 1498
Top 10 bandwidth usage (bytes/total in %):
43.0% 30.4% 13.9% 12.2% 6.3% 5.5% 5.0% 3.6% 2.9% 2.9%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](200903221400.pktlen.png)
detailed numbers
[ 32- 63]: 2449112
[ 64- 127]: 2853557
[ 128- 255]: 442050
[ 256- 511]: 478497
[ 512- 1023]: 263416
[ 1024- 2047]: 5903975
Protocol Breakdown
![[protocol breakdown chart]](200903221400.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 12390607 (100.00%) 9208145936 (100.00%) 743.16
ip 12364354 ( 99.79%) 9202828024 ( 99.94%) 744.30
tcp 9651045 ( 77.89%) 8251545521 ( 89.61%) 854.99
http(s) 4481111 ( 36.17%) 6020376798 ( 65.38%) 1343.50
http(c) 2080010 ( 16.79%) 174749151 ( 1.90%) 84.01
squid 417170 ( 3.37%) 201612292 ( 2.19%) 483.29
smtp 130195 ( 1.05%) 20126002 ( 0.22%) 154.58
nntp 53 ( 0.00%) 6569 ( 0.00%) 123.94
ftp 23788 ( 0.19%) 2540655 ( 0.03%) 106.80
pop3 5998 ( 0.05%) 4965789 ( 0.05%) 827.91
imap 1816 ( 0.01%) 731512 ( 0.01%) 402.81
telnet 519 ( 0.00%) 39205 ( 0.00%) 75.54
ssh 807927 ( 6.52%) 938142381 ( 10.19%) 1161.17
dns 882 ( 0.01%) 74582 ( 0.00%) 84.56
bgp 133 ( 0.00%) 39598 ( 0.00%) 297.73
napster 125 ( 0.00%) 11616 ( 0.00%) 92.93
realaud 17 ( 0.00%) 1100 ( 0.00%) 64.71
rtsp 13932 ( 0.11%) 15862862 ( 0.17%) 1138.59
icecast 432 ( 0.00%) 46122 ( 0.00%) 106.76
hotline 14 ( 0.00%) 1494 ( 0.00%) 106.71
other 1686916 ( 13.61%) 872217373 ( 9.47%) 517.05
udp 2085306 ( 16.83%) 898014712 ( 9.75%) 430.64
dns 712302 ( 5.75%) 152172855 ( 1.65%) 213.64
realaud 1151 ( 0.01%) 72858 ( 0.00%) 63.30
halflif 3450 ( 0.03%) 386250 ( 0.00%) 111.96
starcra 25 ( 0.00%) 3955 ( 0.00%) 158.20
everque 98 ( 0.00%) 16924 ( 0.00%) 172.69
unreal 1216 ( 0.01%) 825129 ( 0.01%) 678.56
quake 11 ( 0.00%) 1353 ( 0.00%) 123.00
cuseeme 3 ( 0.00%) 272 ( 0.00%) 90.67
other 1366985 ( 11.03%) 744483587 ( 8.09%) 544.62
icmp 609735 ( 4.92%) 49471319 ( 0.54%) 81.14
ipip 287 ( 0.00%) 34394 ( 0.00%) 119.84
ipsec 36 ( 0.00%) 5688 ( 0.00%) 158.00
ip6 13726 ( 0.11%) 3221153 ( 0.03%) 234.68
other 4219 ( 0.03%) 535237 ( 0.01%) 126.86
frag 1273 ( 0.01%) 1139115 ( 0.01%) 894.83
ip6 26253 ( 0.21%) 5317912 ( 0.06%) 202.56
tcp6 9016 ( 0.07%) 2757941 ( 0.03%) 305.89
http(s) 2388 ( 0.02%) 1619189 ( 0.02%) 678.05
http(c) 5619 ( 0.05%) 988035 ( 0.01%) 175.84
smtp 148 ( 0.00%) 71749 ( 0.00%) 484.79
ssh 11 ( 0.00%) 1682 ( 0.00%) 152.91
bgp 389 ( 0.00%) 34464 ( 0.00%) 88.60
other 461 ( 0.00%) 42822 ( 0.00%) 92.89
udp6 11936 ( 0.10%) 1831591 ( 0.02%) 153.45
dns 10864 ( 0.09%) 1625359 ( 0.02%) 149.61
other 1072 ( 0.01%) 206232 ( 0.00%) 192.38
icmp6 5197 ( 0.04%) 663807 ( 0.01%) 127.73
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
other6 74 ( 0.00%) 60493 ( 0.00%) 817.47
tcpdump file: 200903221400.dump.gz (295.92 MB)