Traffic Trace Info
DumpFile: 200904031400.dump
FileSize: 1387.12MB
Id: 200904031400
StartTime: Fri Apr 3 14:00:00 2009
EndTime: Fri Apr 3 14:15:00 2009
TotalTime: 900.49 seconds
TotalCapSize: 1085.45MB CapLen: 96 bytes
# of packets: 19767732 (14100.17MB)
AvgRate: 131.30Mbps stddev:20.26M
IP flow (unique src/dst pair) Information
# of flows: 622720 (avg. 31.74 pkts/flow)
Top 10 big flow size (bytes/total in %):
17.2% 4.5% 3.4% 2.0% 1.8% 1.4% 1.3% 1.2% 1.1% 1.0%
IP address Information
# of IPv4 addresses: 410040
Top 10 bandwidth usage (bytes/total in %):
17.3% 17.3% 14.4% 10.3% 6.6% 6.3% 4.6% 3.4% 3.4% 3.4%
# of IPv6 addresses: 1812
Top 10 bandwidth usage (bytes/total in %):
30.5% 20.8% 15.5% 15.5% 14.5% 8.2% 7.3% 6.3% 6.0% 3.8%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](200904031400.pktlen.png)
detailed numbers
[ 32- 63]: 4577915
[ 64- 127]: 3736131
[ 128- 255]: 1004033
[ 256- 511]: 708256
[ 512- 1023]: 424223
[ 1024- 2047]: 9317174
Protocol Breakdown
![[protocol breakdown chart]](200904031400.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 19767732 (100.00%) 14785095654 (100.00%) 747.94
ip 19739020 ( 99.85%) 14776772706 ( 99.94%) 748.61
tcp 17260933 ( 87.32%) 14193542343 ( 96.00%) 822.29
http(s) 6657921 ( 33.68%) 9076536965 ( 61.39%) 1363.27
http(c) 4684992 ( 23.70%) 415069926 ( 2.81%) 88.60
squid 370511 ( 1.87%) 221376863 ( 1.50%) 597.49
smtp 270290 ( 1.37%) 125078663 ( 0.85%) 462.76
nntp 1 ( 0.00%) 60 ( 0.00%) 60.00
ftp 95334 ( 0.48%) 65082806 ( 0.44%) 682.68
pop3 18273 ( 0.09%) 10612714 ( 0.07%) 580.79
imap 4517 ( 0.02%) 446363 ( 0.00%) 98.82
telnet 3946 ( 0.02%) 386877 ( 0.00%) 98.04
ssh 2913869 ( 14.74%) 3063797022 ( 20.72%) 1051.45
dns 5097 ( 0.03%) 4540188 ( 0.03%) 890.76
bgp 155 ( 0.00%) 53803 ( 0.00%) 347.12
napster 10 ( 0.00%) 608 ( 0.00%) 60.80
realaud 23 ( 0.00%) 2019 ( 0.00%) 87.78
rtsp 295144 ( 1.49%) 165394986 ( 1.12%) 560.39
icecast 598 ( 0.00%) 42566 ( 0.00%) 71.18
hotline 2 ( 0.00%) 120 ( 0.00%) 60.00
other 1940243 ( 9.82%) 1045119374 ( 7.07%) 538.65
udp 1991708 ( 10.08%) 525589295 ( 3.55%) 263.89
dns 1018778 ( 5.15%) 222270079 ( 1.50%) 218.17
rip 2 ( 0.00%) 156 ( 0.00%) 78.00
realaud 13632 ( 0.07%) 4509206 ( 0.03%) 330.78
halflif 20 ( 0.00%) 2659 ( 0.00%) 132.95
starcra 21 ( 0.00%) 3229 ( 0.00%) 153.76
everque 156 ( 0.00%) 29811 ( 0.00%) 191.10
unreal 28 ( 0.00%) 5356 ( 0.00%) 191.29
quake 16 ( 0.00%) 1427 ( 0.00%) 89.19
cuseeme 8 ( 0.00%) 1095 ( 0.00%) 136.88
other 959022 ( 4.85%) 298752090 ( 2.02%) 311.52
icmp 435086 ( 2.20%) 39098039 ( 0.26%) 89.86
ipip 284 ( 0.00%) 34476 ( 0.00%) 121.39
ipsec 275 ( 0.00%) 46906 ( 0.00%) 170.57
ip6 37715 ( 0.19%) 16034226 ( 0.11%) 425.14
other 13019 ( 0.07%) 2427421 ( 0.02%) 186.45
frag 2018 ( 0.01%) 1699950 ( 0.01%) 842.39
ip6 28712 ( 0.15%) 8322948 ( 0.06%) 289.88
tcp6 9140 ( 0.05%) 5155645 ( 0.03%) 564.07
http(s) 2094 ( 0.01%) 1686332 ( 0.01%) 805.32
http(c) 3535 ( 0.02%) 677985 ( 0.00%) 191.79
smtp 150 ( 0.00%) 54991 ( 0.00%) 366.61
ssh 189 ( 0.00%) 46274 ( 0.00%) 244.84
bgp 394 ( 0.00%) 35362 ( 0.00%) 89.75
other 2778 ( 0.01%) 2654701 ( 0.02%) 955.62
udp6 15096 ( 0.08%) 2366182 ( 0.02%) 156.74
dns 12868 ( 0.07%) 1969873 ( 0.01%) 153.08
everque 1 ( 0.00%) 97 ( 0.00%) 97.00
other 2227 ( 0.01%) 396212 ( 0.00%) 177.91
icmp6 4217 ( 0.02%) 582370 ( 0.00%) 138.10
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
other6 229 ( 0.00%) 214671 ( 0.00%) 937.43
tcpdump file: 200904031400.dump.gz (470.40 MB)