Traffic Trace Info
DumpFile: 200905201400.dump
FileSize: 2591.04MB
Id: 200905201400
StartTime: Wed May 20 14:00:01 2009
EndTime: Wed May 20 14:15:01 2009
TotalTime: 899.50 seconds
TotalCapSize: 1994.76MB CapLen: 96 bytes
# of packets: 39074370 (23678.38MB)
AvgRate: 220.82Mbps stddev:16.90M
IP flow (unique src/dst pair) Information
# of flows: 1483110 (avg. 26.35 pkts/flow)
Top 10 big flow size (bytes/total in %):
1.1% 0.9% 0.9% 0.8% 0.7% 0.6% 0.6% 0.6% 0.6% 0.6%
IP address Information
# of IPv4 addresses: 909701
Top 10 bandwidth usage (bytes/total in %):
41.3% 4.8% 3.5% 3.2% 3.2% 2.9% 2.5% 1.7% 1.6% 1.5%
# of IPv6 addresses: 1550
Top 10 bandwidth usage (bytes/total in %):
14.5% 13.5% 10.1% 10.0% 9.6% 9.6% 7.7% 6.6% 5.4% 5.3%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](200905201400.pktlen.png)
detailed numbers
[ 32- 63]: 7784404
[ 64- 127]: 10990693
[ 128- 255]: 2080221
[ 256- 511]: 1131974
[ 512- 1023]: 1334694
[ 1024- 2047]: 15752384
Protocol Breakdown
![[protocol breakdown chart]](200905201400.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 39074370 (100.00%) 24828578911 (100.00%) 635.42
ip 39029329 ( 99.88%) 24816458004 ( 99.95%) 635.84
tcp 25016628 ( 64.02%) 18639137597 ( 75.07%) 745.07
http(s) 8070274 ( 20.65%) 10361368853 ( 41.73%) 1283.89
http(c) 4831212 ( 12.36%) 667056478 ( 2.69%) 138.07
squid 615965 ( 1.58%) 307671412 ( 1.24%) 499.49
smtp 364641 ( 0.93%) 119565116 ( 0.48%) 327.90
nntp 99 ( 0.00%) 10644 ( 0.00%) 107.52
ftp 93610 ( 0.24%) 49788035 ( 0.20%) 531.87
pop3 28322 ( 0.07%) 14871688 ( 0.06%) 525.09
imap 2109 ( 0.01%) 604787 ( 0.00%) 286.76
telnet 7074 ( 0.02%) 1278073 ( 0.01%) 180.67
ssh 601011 ( 1.54%) 112090106 ( 0.45%) 186.50
dns 4591 ( 0.01%) 3995063 ( 0.02%) 870.19
bgp 429 ( 0.00%) 275944 ( 0.00%) 643.23
napster 12141 ( 0.03%) 809190 ( 0.00%) 66.65
realaud 1557 ( 0.00%) 185185 ( 0.00%) 118.94
rtsp 145238 ( 0.37%) 16388648 ( 0.07%) 112.84
icecast 30976 ( 0.08%) 17599614 ( 0.07%) 568.17
hotline 55 ( 0.00%) 4027 ( 0.00%) 73.22
other 10206965 ( 26.12%) 6965503162 ( 28.05%) 682.43
udp 13181175 ( 33.73%) 6096768894 ( 24.56%) 462.54
dns 1272324 ( 3.26%) 260521286 ( 1.05%) 204.76
rip 1 ( 0.00%) 104 ( 0.00%) 104.00
realaud 430 ( 0.00%) 51364 ( 0.00%) 119.45
halflif 5829 ( 0.01%) 362704 ( 0.00%) 62.22
starcra 528 ( 0.00%) 104573 ( 0.00%) 198.05
everque 388 ( 0.00%) 67175 ( 0.00%) 173.13
unreal 246 ( 0.00%) 56724 ( 0.00%) 230.59
quake 46 ( 0.00%) 7543 ( 0.00%) 163.98
cuseeme 22 ( 0.00%) 2079 ( 0.00%) 94.50
other 11900120 ( 30.46%) 5835419732 ( 23.50%) 490.37
icmp 781408 ( 2.00%) 70707004 ( 0.28%) 90.49
ipip 1323 ( 0.00%) 215330 ( 0.00%) 162.76
ipsec 1069 ( 0.00%) 248662 ( 0.00%) 232.61
ip6 11288 ( 0.03%) 2198534 ( 0.01%) 194.77
other 36438 ( 0.09%) 7181983 ( 0.03%) 197.10
frag 61645 ( 0.16%) 48546176 ( 0.20%) 787.51
ip6 45041 ( 0.12%) 12120907 ( 0.05%) 269.11
tcp6 16598 ( 0.04%) 6738853 ( 0.03%) 406.00
http(s) 3541 ( 0.01%) 3318405 ( 0.01%) 937.14
http(c) 3557 ( 0.01%) 690130 ( 0.00%) 194.02
smtp 1558 ( 0.00%) 759215 ( 0.00%) 487.30
ftp 2108 ( 0.01%) 208438 ( 0.00%) 98.88
ssh 115 ( 0.00%) 24626 ( 0.00%) 214.14
dns 5 ( 0.00%) 680 ( 0.00%) 136.00
bgp 420 ( 0.00%) 42470 ( 0.00%) 101.12
other 5294 ( 0.01%) 1694889 ( 0.01%) 320.15
udp6 20918 ( 0.05%) 3465084 ( 0.01%) 165.65
dns 20203 ( 0.05%) 3376130 ( 0.01%) 167.11
other 715 ( 0.00%) 88954 ( 0.00%) 124.41
icmp6 5710 ( 0.01%) 693008 ( 0.00%) 121.37
pim6 31 ( 0.00%) 4216 ( 0.00%) 136.00
other6 1784 ( 0.00%) 1219746 ( 0.00%) 683.71
tcpdump file: 200905201400.dump.gz (986.88 MB)