Traffic Trace Info
DumpFile: 200908261400.dump
FileSize: 1781.79MB
Id: 200908261400
StartTime: Wed Aug 26 14:00:01 2009
EndTime: Wed Aug 26 14:15:00 2009
TotalTime: 899.72 seconds
TotalCapSize: 1387.57MB CapLen: 96 bytes
# of packets: 25834708 (15443.35MB)
AvgRate: 144.01Mbps stddev:16.33M
IP flow (unique src/dst pair) Information
# of flows: 1363729 (avg. 18.94 pkts/flow)
Top 10 big flow size (bytes/total in %):
4.2% 3.5% 2.3% 1.3% 1.2% 1.1% 1.0% 1.0% 0.9% 0.9%
IP address Information
# of IPv4 addresses: 823214
Top 10 bandwidth usage (bytes/total in %):
16.4% 11.8% 7.0% 5.4% 5.0% 4.3% 3.6% 3.3% 2.3% 2.3%
# of IPv6 addresses: 953
Top 10 bandwidth usage (bytes/total in %):
10.4% 9.5% 6.9% 6.9% 6.6% 6.6% 5.9% 5.6% 5.5% 4.7%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](200908261400.pktlen.png)
detailed numbers
[ 32- 63]: 5931656
[ 64- 127]: 6806369
[ 128- 255]: 1446680
[ 256- 511]: 854025
[ 512- 1023]: 851831
[ 1024- 2047]: 9944147
Protocol Breakdown
![[protocol breakdown chart]](200908261400.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 25834708 (100.00%) 16193526720 (100.00%) 626.81
ip 25808798 ( 99.90%) 16188611093 ( 99.97%) 627.25
tcp 19697596 ( 76.24%) 13799713737 ( 85.22%) 700.58
http(s) 7370716 ( 28.53%) 9317945809 ( 57.54%) 1264.18
http(c) 5318573 ( 20.59%) 1031442471 ( 6.37%) 193.93
squid 731289 ( 2.83%) 219975735 ( 1.36%) 300.81
smtp 258436 ( 1.00%) 64184438 ( 0.40%) 248.36
nntp 68 ( 0.00%) 6957 ( 0.00%) 102.31
ftp 43073 ( 0.17%) 4500124 ( 0.03%) 104.48
pop3 12530 ( 0.05%) 5024055 ( 0.03%) 400.96
imap 1939 ( 0.01%) 266655 ( 0.00%) 137.52
telnet 319 ( 0.00%) 26217 ( 0.00%) 82.18
ssh 72466 ( 0.28%) 19878047 ( 0.12%) 274.31
dns 5472 ( 0.02%) 6721134 ( 0.04%) 1228.28
bgp 124 ( 0.00%) 29899 ( 0.00%) 241.12
napster 124 ( 0.00%) 9355 ( 0.00%) 75.44
realaud 354 ( 0.00%) 39422 ( 0.00%) 111.36
rtsp 67939 ( 0.26%) 34338007 ( 0.21%) 505.42
icecast 22413 ( 0.09%) 9170030 ( 0.06%) 409.14
hotline 8 ( 0.00%) 1387 ( 0.00%) 173.38
other 5791681 ( 22.42%) 3086047353 ( 19.06%) 532.84
udp 5361852 ( 20.75%) 2317973040 ( 14.31%) 432.31
dns 1382622 ( 5.35%) 238371332 ( 1.47%) 172.41
realaud 78 ( 0.00%) 12069 ( 0.00%) 154.73
halflif 103 ( 0.00%) 15684 ( 0.00%) 152.27
starcra 357 ( 0.00%) 72776 ( 0.00%) 203.85
everque 331 ( 0.00%) 67955 ( 0.00%) 205.30
unreal 74 ( 0.00%) 14101 ( 0.00%) 190.55
quake 34 ( 0.00%) 4102 ( 0.00%) 120.65
cuseeme 16 ( 0.00%) 2345 ( 0.00%) 146.56
other 3975468 ( 15.39%) 2078391184 ( 12.83%) 522.80
icmp 684319 ( 2.65%) 54878805 ( 0.34%) 80.19
ipip 326 ( 0.00%) 39704 ( 0.00%) 121.79
ipsec 130 ( 0.00%) 20404 ( 0.00%) 156.95
ip6 16588 ( 0.06%) 5681952 ( 0.04%) 342.53
other 47987 ( 0.19%) 10303451 ( 0.06%) 214.71
frag 27090 ( 0.10%) 28064708 ( 0.17%) 1035.98
ip6 25910 ( 0.10%) 4915627 ( 0.03%) 189.72
tcp6 8994 ( 0.03%) 1709028 ( 0.01%) 190.02
http(s) 439 ( 0.00%) 549105 ( 0.00%) 1250.81
http(c) 6055 ( 0.02%) 473077 ( 0.00%) 78.13
smtp 1084 ( 0.00%) 531765 ( 0.00%) 490.56
ssh 123 ( 0.00%) 31490 ( 0.00%) 256.02
dns 8 ( 0.00%) 1870 ( 0.00%) 233.75
bgp 117 ( 0.00%) 15463 ( 0.00%) 132.16
other 1168 ( 0.00%) 106258 ( 0.00%) 90.97
udp6 13135 ( 0.05%) 2743981 ( 0.02%) 208.91
dns 13126 ( 0.05%) 2742991 ( 0.02%) 208.97
other 9 ( 0.00%) 990 ( 0.00%) 110.00
icmp6 3734 ( 0.01%) 441235 ( 0.00%) 118.17
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
other6 17 ( 0.00%) 17303 ( 0.00%) 1017.82
tcpdump file: 200908261400.dump.gz (657.68 MB)