Traffic Trace Info
DumpFile: 200908151400.dump
FileSize: 1253.83MB
Id: 200908151400
StartTime: Sat Aug 15 14:00:00 2009
EndTime: Sat Aug 15 14:15:01 2009
TotalTime: 900.46 seconds
TotalCapSize: 978.75MB CapLen: 96 bytes
# of packets: 18027468 (11244.78MB)
AvgRate: 104.75Mbps stddev:13.69M
IP flow (unique src/dst pair) Information
# of flows: 1120143 (avg. 16.09 pkts/flow)
Top 10 big flow size (bytes/total in %):
3.0% 1.6% 1.5% 1.2% 1.2% 1.2% 1.1% 1.0% 0.9% 0.9%
IP address Information
# of IPv4 addresses: 662553
Top 10 bandwidth usage (bytes/total in %):
18.0% 15.3% 5.5% 4.6% 3.8% 3.7% 3.0% 3.0% 2.3% 2.1%
# of IPv6 addresses: 808
Top 10 bandwidth usage (bytes/total in %):
15.9% 11.0% 10.3% 9.5% 6.6% 5.9% 5.6% 4.8% 4.7% 4.7%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](200908151400.pktlen.png)
detailed numbers
[ 32- 63]: 4415594
[ 64- 127]: 4458270
[ 128- 255]: 882606
[ 256- 511]: 622765
[ 512- 1023]: 459309
[ 1024- 2047]: 7188924
Protocol Breakdown
![[protocol breakdown chart]](200908151400.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 18027468 (100.00%) 11791007456 (100.00%) 654.06
ip 18012285 ( 99.92%) 11787906068 ( 99.97%) 654.44
tcp 14331087 ( 79.50%) 10746963474 ( 91.15%) 749.91
http(s) 5466888 ( 30.33%) 7220710696 ( 61.24%) 1320.81
http(c) 2931870 ( 16.26%) 421126444 ( 3.57%) 143.64
squid 568513 ( 3.15%) 176413688 ( 1.50%) 310.31
smtp 202438 ( 1.12%) 35783077 ( 0.30%) 176.76
nntp 6 ( 0.00%) 372 ( 0.00%) 62.00
ftp 120062 ( 0.67%) 89368357 ( 0.76%) 744.35
pop3 4892 ( 0.03%) 1921248 ( 0.02%) 392.73
imap 6185 ( 0.03%) 7951060 ( 0.07%) 1285.54
telnet 1329 ( 0.01%) 99543 ( 0.00%) 74.90
ssh 72203 ( 0.40%) 8734528 ( 0.07%) 120.97
dns 5846 ( 0.03%) 6799078 ( 0.06%) 1163.03
bgp 143 ( 0.00%) 47691 ( 0.00%) 333.50
napster 1568 ( 0.01%) 1609191 ( 0.01%) 1026.27
realaud 281 ( 0.00%) 33885 ( 0.00%) 120.59
rtsp 120492 ( 0.67%) 7506428 ( 0.06%) 62.30
icecast 6958 ( 0.04%) 4204661 ( 0.04%) 604.29
hotline 25 ( 0.00%) 1897 ( 0.00%) 75.88
other 4821374 ( 26.74%) 2764637704 ( 23.45%) 573.41
udp 3046262 ( 16.90%) 980498230 ( 8.32%) 321.87
dns 1213542 ( 6.73%) 190511402 ( 1.62%) 156.99
realaud 3713 ( 0.02%) 226104 ( 0.00%) 60.90
halflif 75 ( 0.00%) 9895 ( 0.00%) 131.93
starcra 156 ( 0.00%) 30882 ( 0.00%) 197.96
everque 191 ( 0.00%) 37249 ( 0.00%) 195.02
unreal 304 ( 0.00%) 26803 ( 0.00%) 88.17
quake 54 ( 0.00%) 6163 ( 0.00%) 114.13
cuseeme 11 ( 0.00%) 1413 ( 0.00%) 128.45
other 1827846 ( 10.14%) 789445880 ( 6.70%) 431.90
icmp 602189 ( 3.34%) 47420814 ( 0.40%) 78.75
ipip 313 ( 0.00%) 39274 ( 0.00%) 125.48
ipsec 60 ( 0.00%) 9480 ( 0.00%) 158.00
ip6 12322 ( 0.07%) 2435482 ( 0.02%) 197.65
other 20052 ( 0.11%) 10539314 ( 0.09%) 525.60
frag 7037 ( 0.04%) 7370566 ( 0.06%) 1047.40
ip6 15183 ( 0.08%) 3101388 ( 0.03%) 204.27
tcp6 4365 ( 0.02%) 1166024 ( 0.01%) 267.13
http(s) 284 ( 0.00%) 354400 ( 0.00%) 1247.89
http(c) 1658 ( 0.01%) 154554 ( 0.00%) 93.22
smtp 1104 ( 0.01%) 525338 ( 0.00%) 475.85
ssh 2 ( 0.00%) 172 ( 0.00%) 86.00
bgp 132 ( 0.00%) 19504 ( 0.00%) 147.76
other 1185 ( 0.01%) 112056 ( 0.00%) 94.56
udp6 7684 ( 0.04%) 1559254 ( 0.01%) 202.92
dns 7652 ( 0.04%) 1555734 ( 0.01%) 203.31
other 32 ( 0.00%) 3520 ( 0.00%) 110.00
icmp6 3086 ( 0.02%) 355185 ( 0.00%) 115.10
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
other6 18 ( 0.00%) 16845 ( 0.00%) 935.83
tcpdump file: 200908151400.dump.gz (462.90 MB)