Traffic Trace Info
DumpFile: 200908251400.dump
FileSize: 1652.39MB
Id: 200908251400
StartTime: Tue Aug 25 14:00:00 2009
EndTime: Tue Aug 25 14:15:01 2009
TotalTime: 900.71 seconds
TotalCapSize: 1283.27MB CapLen: 96 bytes
# of packets: 24189518 (13755.22MB)
AvgRate: 128.11Mbps stddev:12.51M
IP flow (unique src/dst pair) Information
# of flows: 1512061 (avg. 16.00 pkts/flow)
Top 10 big flow size (bytes/total in %):
3.3% 2.8% 1.8% 1.8% 1.4% 1.2% 1.2% 1.1% 1.1% 1.0%
IP address Information
# of IPv4 addresses: 896053
Top 10 bandwidth usage (bytes/total in %):
15.9% 7.9% 7.5% 4.0% 3.4% 3.4% 3.3% 3.0% 3.0% 2.9%
# of IPv6 addresses: 951
Top 10 bandwidth usage (bytes/total in %):
26.3% 26.3% 11.6% 11.6% 9.8% 5.6% 5.2% 5.2% 5.0% 4.9%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](200908251400.pktlen.png)
detailed numbers
[ 32- 63]: 6779383
[ 64- 127]: 5929506
[ 128- 255]: 1361694
[ 256- 511]: 744017
[ 512- 1023]: 673584
[ 1024- 2047]: 8701334
Protocol Breakdown
![[protocol breakdown chart]](200908251400.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 24189518 (100.00%) 14423394180 (100.00%) 596.27
ip 24121334 ( 99.72%) 14414226588 ( 99.94%) 597.57
tcp 18396718 ( 76.05%) 12654594698 ( 87.74%) 687.87
http(s) 6523472 ( 26.97%) 8730526628 ( 60.53%) 1338.33
http(c) 4113781 ( 17.01%) 456854528 ( 3.17%) 111.05
squid 749187 ( 3.10%) 217686541 ( 1.51%) 290.56
smtp 291045 ( 1.20%) 85494602 ( 0.59%) 293.75
nntp 23 ( 0.00%) 1426 ( 0.00%) 62.00
ftp 94988 ( 0.39%) 35208778 ( 0.24%) 370.67
pop3 17076 ( 0.07%) 10316333 ( 0.07%) 604.14
imap 3878 ( 0.02%) 914774 ( 0.01%) 235.89
telnet 3367 ( 0.01%) 682012 ( 0.00%) 202.56
ssh 507835 ( 2.10%) 42653815 ( 0.30%) 83.99
dns 7858 ( 0.03%) 6862029 ( 0.05%) 873.25
bgp 156 ( 0.00%) 55126 ( 0.00%) 353.37
napster 485 ( 0.00%) 205662 ( 0.00%) 424.05
realaud 135 ( 0.00%) 17566 ( 0.00%) 130.12
rtsp 103097 ( 0.43%) 42992529 ( 0.30%) 417.01
icecast 11239 ( 0.05%) 8069779 ( 0.06%) 718.02
hotline 25 ( 0.00%) 4006 ( 0.00%) 160.24
other 5969001 ( 24.68%) 3015989451 ( 20.91%) 505.28
udp 4774774 ( 19.74%) 1677743901 ( 11.63%) 351.38
dns 1154556 ( 4.77%) 223912977 ( 1.55%) 193.94
rip 1 ( 0.00%) 105 ( 0.00%) 105.00
realaud 76 ( 0.00%) 9864 ( 0.00%) 129.79
halflif 4156 ( 0.02%) 1279561 ( 0.01%) 307.88
starcra 271 ( 0.00%) 53600 ( 0.00%) 197.79
everque 253 ( 0.00%) 56007 ( 0.00%) 221.37
unreal 76 ( 0.00%) 14326 ( 0.00%) 188.50
quake 40 ( 0.00%) 6142 ( 0.00%) 153.55
cuseeme 23 ( 0.00%) 3091 ( 0.00%) 134.39
other 3612784 ( 14.94%) 1452080555 ( 10.07%) 401.93
icmp 900044 ( 3.72%) 70296073 ( 0.49%) 78.10
ipip 342 ( 0.00%) 41604 ( 0.00%) 121.65
ipsec 126 ( 0.00%) 19636 ( 0.00%) 155.84
ip6 14638 ( 0.06%) 3640444 ( 0.03%) 248.70
other 34692 ( 0.14%) 7890232 ( 0.05%) 227.44
frag 23723 ( 0.10%) 20220119 ( 0.14%) 852.34
ip6 68184 ( 0.28%) 9167592 ( 0.06%) 134.45
tcp6 51153 ( 0.21%) 5994873 ( 0.04%) 117.19
http(s) 1242 ( 0.01%) 829892 ( 0.01%) 668.19
http(c) 41822 ( 0.17%) 3618610 ( 0.03%) 86.52
smtp 1790 ( 0.01%) 918982 ( 0.01%) 513.40
ftp 2668 ( 0.01%) 272972 ( 0.00%) 102.31
ssh 73 ( 0.00%) 19910 ( 0.00%) 272.74
dns 15 ( 0.00%) 3454 ( 0.00%) 230.27
bgp 125 ( 0.00%) 18447 ( 0.00%) 147.58
other 3418 ( 0.01%) 312606 ( 0.00%) 91.46
udp6 13213 ( 0.05%) 2708726 ( 0.02%) 205.00
dns 13194 ( 0.05%) 2704076 ( 0.02%) 204.95
other 19 ( 0.00%) 4650 ( 0.00%) 244.74
icmp6 3773 ( 0.02%) 447049 ( 0.00%) 118.49
pim6 31 ( 0.00%) 4216 ( 0.00%) 136.00
other6 14 ( 0.00%) 12728 ( 0.00%) 909.14
tcpdump file: 200908251400.dump.gz (608.03 MB)