Traffic Trace Info
DumpFile: 200903281400.dump
FileSize: 1487.62MB
Id: 200903281400
StartTime: Sat Mar 28 14:00:01 2009
EndTime: Sat Mar 28 14:15:00 2009
TotalTime: 899.65 seconds
TotalCapSize: 1160.86MB CapLen: 96 bytes
# of packets: 21413864 (17194.37MB)
AvgRate: 160.33Mbps stddev:14.03M
IP flow (unique src/dst pair) Information
# of flows: 621659 (avg. 34.45 pkts/flow)
Top 10 big flow size (bytes/total in %):
26.3% 1.2% 1.1% 1.0% 0.9% 0.8% 0.8% 0.7% 0.5% 0.5%
IP address Information
# of IPv4 addresses: 403780
Top 10 bandwidth usage (bytes/total in %):
26.3% 26.3% 14.0% 9.8% 9.4% 6.0% 2.3% 2.0% 1.6% 1.3%
# of IPv6 addresses: 2183
Top 10 bandwidth usage (bytes/total in %):
31.2% 20.7% 16.9% 15.2% 14.0% 11.0% 7.3% 6.8% 3.8% 3.8%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](200903281400.pktlen.png)
detailed numbers
[ 32- 63]: 3662101
[ 64- 127]: 3519991
[ 128- 255]: 898638
[ 256- 511]: 924019
[ 512- 1023]: 417091
[ 1024- 2047]: 11992024
Protocol Breakdown
![[protocol breakdown chart]](200903281400.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 21413864 (100.00%) 18029606164 (100.00%) 841.96
ip 21384796 ( 99.86%) 18021053688 ( 99.95%) 842.70
tcp 16668231 ( 77.84%) 15267177289 ( 84.68%) 915.94
http(s) 6020570 ( 28.12%) 8099854445 ( 44.93%) 1345.36
http(c) 2938725 ( 13.72%) 249883639 ( 1.39%) 85.03
squid 402214 ( 1.88%) 231808813 ( 1.29%) 576.33
smtp 233793 ( 1.09%) 94005264 ( 0.52%) 402.09
nntp 124 ( 0.00%) 16078 ( 0.00%) 129.66
ftp 189859 ( 0.89%) 203363015 ( 1.13%) 1071.13
pop3 8907 ( 0.04%) 2984475 ( 0.02%) 335.07
imap 4877 ( 0.02%) 3631505 ( 0.02%) 744.62
telnet 12003 ( 0.06%) 5284474 ( 0.03%) 440.26
ssh 4428744 ( 20.68%) 4779096456 ( 26.51%) 1079.11
dns 11707 ( 0.05%) 1147791 ( 0.01%) 98.04
bgp 156 ( 0.00%) 45803 ( 0.00%) 293.61
napster 6 ( 0.00%) 1144 ( 0.00%) 190.67
realaud 73 ( 0.00%) 7320 ( 0.00%) 100.27
rtsp 193642 ( 0.90%) 274237323 ( 1.52%) 1416.21
icecast 11883 ( 0.06%) 787997 ( 0.00%) 66.31
other 2210931 ( 10.32%) 1321020727 ( 7.33%) 597.50
udp 4279112 ( 19.98%) 2709225911 ( 15.03%) 633.13
dns 1030289 ( 4.81%) 220548189 ( 1.22%) 214.06
realaud 10651 ( 0.05%) 6471633 ( 0.04%) 607.61
halflif 22 ( 0.00%) 4362 ( 0.00%) 198.27
starcra 38 ( 0.00%) 7286 ( 0.00%) 191.74
everque 55 ( 0.00%) 11068 ( 0.00%) 201.24
unreal 711 ( 0.00%) 386488 ( 0.00%) 543.58
quake 14 ( 0.00%) 3486 ( 0.00%) 249.00
cuseeme 1 ( 0.00%) 99 ( 0.00%) 99.00
other 3237200 ( 15.12%) 2481687767 ( 13.76%) 766.62
icmp 407218 ( 1.90%) 36622498 ( 0.20%) 89.93
ipip 290 ( 0.00%) 35112 ( 0.00%) 121.08
ipsec 53 ( 0.00%) 8374 ( 0.00%) 158.00
ip6 21074 ( 0.10%) 6798730 ( 0.04%) 322.61
other 8818 ( 0.04%) 1185774 ( 0.01%) 134.47
frag 85159 ( 0.40%) 79344113 ( 0.44%) 931.72
ip6 29068 ( 0.14%) 8552476 ( 0.05%) 294.22
tcp6 9619 ( 0.04%) 5172217 ( 0.03%) 537.71
http(s) 1969 ( 0.01%) 1520980 ( 0.01%) 772.46
http(c) 4375 ( 0.02%) 782864 ( 0.00%) 178.94
smtp 73 ( 0.00%) 31358 ( 0.00%) 429.56
bgp 362 ( 0.00%) 30114 ( 0.00%) 83.19
other 2840 ( 0.01%) 2806901 ( 0.02%) 988.35
udp6 14650 ( 0.07%) 2474821 ( 0.01%) 168.93
dns 12114 ( 0.06%) 1854578 ( 0.01%) 153.09
halflif 1 ( 0.00%) 107 ( 0.00%) 107.00
everque 2 ( 0.00%) 217 ( 0.00%) 108.50
other 2533 ( 0.01%) 619919 ( 0.00%) 244.74
icmp6 4431 ( 0.02%) 596781 ( 0.00%) 134.68
pim6 31 ( 0.00%) 4216 ( 0.00%) 136.00
other6 337 ( 0.00%) 304441 ( 0.00%) 903.39
tcpdump file: 200903281400.dump.gz (490.19 MB)