Traffic Trace Info
DumpFile: 200905121400.dump
FileSize: 1978.58MB
Id: 200905121400
StartTime: Tue May 12 14:00:01 2009
EndTime: Tue May 12 14:15:01 2009
TotalTime: 899.63 seconds
TotalCapSize: 1532.65MB CapLen: 96 bytes
# of packets: 29223587 (17518.78MB)
AvgRate: 163.33Mbps stddev:12.65M
IP flow (unique src/dst pair) Information
# of flows: 1485424 (avg. 19.67 pkts/flow)
Top 10 big flow size (bytes/total in %):
1.3% 1.0% 1.0% 1.0% 0.8% 0.8% 0.7% 0.7% 0.6% 0.6%
IP address Information
# of IPv4 addresses: 882847
Top 10 bandwidth usage (bytes/total in %):
29.8% 6.2% 5.6% 4.5% 3.2% 2.6% 2.5% 2.2% 1.8% 1.5%
# of IPv6 addresses: 2085
Top 10 bandwidth usage (bytes/total in %):
21.2% 15.8% 12.3% 12.3% 11.2% 7.1% 7.0% 6.6% 5.7% 5.6%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](200905121400.pktlen.png)
detailed numbers
[ 32- 63]: 7557963
[ 64- 127]: 7032452
[ 128- 255]: 1648640
[ 256- 511]: 765396
[ 512- 1023]: 990801
[ 1024- 2047]: 11228335
Protocol Breakdown
![[protocol breakdown chart]](200905121400.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 29223587 (100.00%) 18369771899 (100.00%) 628.59
ip 29184836 ( 99.87%) 18358280680 ( 99.94%) 629.03
tcp 21672042 ( 74.16%) 15768402592 ( 85.84%) 727.59
http(s) 6938391 ( 23.74%) 8883660104 ( 48.36%) 1280.36
http(c) 5189698 ( 17.76%) 655397965 ( 3.57%) 126.29
squid 825298 ( 2.82%) 604065659 ( 3.29%) 731.94
smtp 337267 ( 1.15%) 147095809 ( 0.80%) 436.14
nntp 22 ( 0.00%) 1754 ( 0.00%) 79.73
ftp 145209 ( 0.50%) 30187760 ( 0.16%) 207.89
pop3 20897 ( 0.07%) 11217220 ( 0.06%) 536.79
imap 2114 ( 0.01%) 159504 ( 0.00%) 75.45
telnet 25568 ( 0.09%) 2238516 ( 0.01%) 87.55
ssh 22268 ( 0.08%) 4947993 ( 0.03%) 222.20
dns 4905 ( 0.02%) 4085980 ( 0.02%) 833.02
bgp 148 ( 0.00%) 53792 ( 0.00%) 363.46
napster 53 ( 0.00%) 6863 ( 0.00%) 129.49
realaud 3264 ( 0.01%) 2208624 ( 0.01%) 676.66
rtsp 380715 ( 1.30%) 158010116 ( 0.86%) 415.04
icecast 6804 ( 0.02%) 2597044 ( 0.01%) 381.69
hotline 29 ( 0.00%) 4438 ( 0.00%) 153.03
other 7769386 ( 26.59%) 5262463091 ( 28.65%) 677.33
udp 6764965 ( 23.15%) 2515590281 ( 13.69%) 371.86
dns 1298369 ( 4.44%) 268262639 ( 1.46%) 206.62
realaud 3544 ( 0.01%) 228136 ( 0.00%) 64.37
halflif 1419 ( 0.00%) 105665 ( 0.00%) 74.46
starcra 384 ( 0.00%) 73684 ( 0.00%) 191.89
everque 289 ( 0.00%) 48484 ( 0.00%) 167.76
unreal 144 ( 0.00%) 25327 ( 0.00%) 175.88
quake 67 ( 0.00%) 12312 ( 0.00%) 183.76
cuseeme 19 ( 0.00%) 3000 ( 0.00%) 157.89
other 5460103 ( 18.68%) 2246698436 ( 12.23%) 411.48
icmp 694914 ( 2.38%) 62205173 ( 0.34%) 89.51
ipip 1630 ( 0.01%) 245238 ( 0.00%) 150.45
ip6 14046 ( 0.05%) 5250090 ( 0.03%) 373.78
other 37239 ( 0.13%) 6587306 ( 0.04%) 176.89
frag 3556 ( 0.01%) 3289789 ( 0.02%) 925.14
ip6 38751 ( 0.13%) 11491219 ( 0.06%) 296.54
tcp6 11795 ( 0.04%) 6873878 ( 0.04%) 582.78
http(s) 5138 ( 0.02%) 4182628 ( 0.02%) 814.06
http(c) 3022 ( 0.01%) 702152 ( 0.00%) 232.35
smtp 889 ( 0.00%) 306686 ( 0.00%) 344.98
imap 2 ( 0.00%) 225 ( 0.00%) 112.50
ssh 34 ( 0.00%) 9612 ( 0.00%) 282.71
bgp 368 ( 0.00%) 31375 ( 0.00%) 85.26
other 2342 ( 0.01%) 1641200 ( 0.01%) 700.77
udp6 21236 ( 0.07%) 3639430 ( 0.02%) 171.38
dns 19193 ( 0.07%) 3153924 ( 0.02%) 164.33
everque 1 ( 0.00%) 102 ( 0.00%) 102.00
quake 1 ( 0.00%) 100 ( 0.00%) 100.00
other 2041 ( 0.01%) 485304 ( 0.00%) 237.78
icmp6 5522 ( 0.02%) 814538 ( 0.00%) 147.51
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
other6 168 ( 0.00%) 159293 ( 0.00%) 948.17
tcpdump file: 200905121400.dump.gz (739.22 MB)