Traffic Trace Info
DumpFile: 200908071400.dump
FileSize: 1467.59MB
Id: 200908071400
StartTime: Fri Aug 7 14:00:00 2009
EndTime: Fri Aug 7 14:15:01 2009
TotalTime: 900.60 seconds
TotalCapSize: 1138.64MB CapLen: 96 bytes
# of packets: 21557621 (11533.89MB)
AvgRate: 107.44Mbps stddev:15.24M
IP flow (unique src/dst pair) Information
# of flows: 1453289 (avg. 14.83 pkts/flow)
Top 10 big flow size (bytes/total in %):
2.0% 2.0% 1.6% 1.3% 1.3% 1.2% 1.2% 1.2% 1.1% 1.1%
IP address Information
# of IPv4 addresses: 839135
Top 10 bandwidth usage (bytes/total in %):
17.2% 6.2% 5.7% 5.0% 4.1% 2.6% 2.3% 2.0% 2.0% 2.0%
# of IPv6 addresses: 974
Top 10 bandwidth usage (bytes/total in %):
95.8% 95.7% 1.1% 1.1% 0.8% 0.6% 0.5% 0.2% 0.2% 0.2%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](200908071400.pktlen.png)
detailed numbers
[ 32- 63]: 6245701
[ 64- 127]: 5156817
[ 128- 255]: 1389990
[ 256- 511]: 867755
[ 512- 1023]: 711199
[ 1024- 2047]: 7186159
Protocol Breakdown
![[protocol breakdown chart]](200908071400.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 21557621 (100.00%) 12094157482 (100.00%) 561.02
ip 21437997 ( 99.45%) 11941484512 ( 98.74%) 557.02
tcp 15673348 ( 72.70%) 10316405846 ( 85.30%) 658.21
http(s) 5156763 ( 23.92%) 6616439943 ( 54.71%) 1283.06
http(c) 3476451 ( 16.13%) 412955624 ( 3.41%) 118.79
squid 941645 ( 4.37%) 498533397 ( 4.12%) 529.43
smtp 268803 ( 1.25%) 77000986 ( 0.64%) 286.46
nntp 10 ( 0.00%) 600 ( 0.00%) 60.00
ftp 88919 ( 0.41%) 57646921 ( 0.48%) 648.31
pop3 12358 ( 0.06%) 3621679 ( 0.03%) 293.06
imap 1704 ( 0.01%) 193281 ( 0.00%) 113.43
telnet 1188 ( 0.01%) 110696 ( 0.00%) 93.18
ssh 396980 ( 1.84%) 44583270 ( 0.37%) 112.31
dns 5748 ( 0.03%) 6712724 ( 0.06%) 1167.84
bgp 150 ( 0.00%) 53669 ( 0.00%) 357.79
napster 53 ( 0.00%) 6468 ( 0.00%) 122.04
realaud 332 ( 0.00%) 38625 ( 0.00%) 116.34
rtsp 594823 ( 2.76%) 42423082 ( 0.35%) 71.32
icecast 11596 ( 0.05%) 8001071 ( 0.07%) 689.99
hotline 6 ( 0.00%) 685 ( 0.00%) 114.17
other 4715360 ( 21.87%) 2548002528 ( 21.07%) 540.36
udp 4819848 ( 22.36%) 1536994823 ( 12.71%) 318.89
dns 1343397 ( 6.23%) 243841724 ( 2.02%) 181.51
rip 1 ( 0.00%) 143 ( 0.00%) 143.00
realaud 82 ( 0.00%) 11837 ( 0.00%) 144.35
halflif 89 ( 0.00%) 13468 ( 0.00%) 151.33
starcra 483 ( 0.00%) 102533 ( 0.00%) 212.28
everque 331 ( 0.00%) 70310 ( 0.00%) 212.42
unreal 107 ( 0.00%) 20454 ( 0.00%) 191.16
quake 37 ( 0.00%) 5877 ( 0.00%) 158.84
cuseeme 14 ( 0.00%) 2796 ( 0.00%) 199.71
other 3474758 ( 16.12%) 1292713053 ( 10.69%) 372.03
icmp 823691 ( 3.82%) 65001476 ( 0.54%) 78.91
ipip 320 ( 0.00%) 38442 ( 0.00%) 120.13
ipsec 66 ( 0.00%) 10428 ( 0.00%) 158.00
ip6 23642 ( 0.11%) 6155053 ( 0.05%) 260.34
other 97082 ( 0.45%) 16878444 ( 0.14%) 173.86
frag 8706 ( 0.04%) 9078024 ( 0.08%) 1042.73
ip6 119624 ( 0.55%) 152672970 ( 1.26%) 1276.27
tcp6 104277 ( 0.48%) 149096359 ( 1.23%) 1429.81
http(s) 97970 ( 0.45%) 146283845 ( 1.21%) 1493.15
http(c) 2186 ( 0.01%) 201399 ( 0.00%) 92.13
squid 6 ( 0.00%) 444 ( 0.00%) 74.00
smtp 1616 ( 0.01%) 796120 ( 0.01%) 492.65
ssh 46 ( 0.00%) 11384 ( 0.00%) 247.48
dns 8 ( 0.00%) 2168 ( 0.00%) 271.00
bgp 88 ( 0.00%) 10390 ( 0.00%) 118.07
icecast 3 ( 0.00%) 222 ( 0.00%) 74.00
other 2354 ( 0.01%) 1790387 ( 0.01%) 760.57
udp6 11086 ( 0.05%) 2207134 ( 0.02%) 199.09
dns 11017 ( 0.05%) 2196164 ( 0.02%) 199.34
halflif 1 ( 0.00%) 105 ( 0.00%) 105.00
other 68 ( 0.00%) 10865 ( 0.00%) 159.78
icmp6 4210 ( 0.02%) 1347078 ( 0.01%) 319.97
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
other6 21 ( 0.00%) 18319 ( 0.00%) 872.33
tcpdump file: 200908071400.dump.gz (546.93 MB)