Traffic Trace Info
DumpFile: 200908291400.dump
FileSize: 1335.86MB
Id: 200908291400
StartTime: Sat Aug 29 14:00:00 2009
EndTime: Sat Aug 29 14:15:01 2009
TotalTime: 900.66 seconds
TotalCapSize: 1026.43MB CapLen: 96 bytes
# of packets: 20277747 (10755.42MB)
AvgRate: 100.18Mbps stddev:10.09M
IP flow (unique src/dst pair) Information
# of flows: 1461588 (avg. 13.87 pkts/flow)
Top 10 big flow size (bytes/total in %):
1.3% 1.1% 1.1% 1.0% 1.0% 0.9% 0.9% 0.9% 0.7% 0.6%
IP address Information
# of IPv4 addresses: 870631
Top 10 bandwidth usage (bytes/total in %):
20.5% 10.4% 10.3% 5.3% 2.3% 2.2% 2.0% 1.9% 1.9% 1.5%
# of IPv6 addresses: 911
Top 10 bandwidth usage (bytes/total in %):
25.4% 12.4% 12.4% 9.4% 8.2% 7.4% 6.9% 5.9% 5.2% 4.2%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](200908291400.pktlen.png)
detailed numbers
[ 32- 63]: 5524383
[ 64- 127]: 5167193
[ 128- 255]: 1401405
[ 256- 511]: 826713
[ 512- 1023]: 763194
[ 1024- 2047]: 6594859
Protocol Breakdown
![[protocol breakdown chart]](200908291400.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 20277747 (100.00%) 11277872768 (100.00%) 556.17
ip 20255558 ( 99.89%) 11273953484 ( 99.97%) 556.59
tcp 13150742 ( 64.85%) 8353168624 ( 74.07%) 635.19
http(s) 4106591 ( 20.25%) 5394222735 ( 47.83%) 1313.55
http(c) 2623953 ( 12.94%) 322403754 ( 2.86%) 122.87
squid 705333 ( 3.48%) 124298835 ( 1.10%) 176.23
smtp 271330 ( 1.34%) 72433345 ( 0.64%) 266.96
nntp 45 ( 0.00%) 3781 ( 0.00%) 84.02
ftp 10172 ( 0.05%) 1496868 ( 0.01%) 147.16
pop3 8592 ( 0.04%) 3615368 ( 0.03%) 420.78
imap 1300 ( 0.01%) 304344 ( 0.00%) 234.11
telnet 345 ( 0.00%) 31911 ( 0.00%) 92.50
ssh 9637 ( 0.05%) 1317344 ( 0.01%) 136.70
dns 5790 ( 0.03%) 6739949 ( 0.06%) 1164.07
bgp 140 ( 0.00%) 44374 ( 0.00%) 316.96
napster 235 ( 0.00%) 44254 ( 0.00%) 188.31
realaud 463 ( 0.00%) 53501 ( 0.00%) 115.55
rtsp 77756 ( 0.38%) 25214083 ( 0.22%) 324.27
icecast 7060 ( 0.03%) 3052110 ( 0.03%) 432.31
hotline 2 ( 0.00%) 124 ( 0.00%) 62.00
other 5321895 ( 26.25%) 2397885764 ( 21.26%) 450.57
udp 6328849 ( 31.21%) 2840523720 ( 25.19%) 448.82
dns 1064598 ( 5.25%) 179649913 ( 1.59%) 168.75
rip 6 ( 0.00%) 911 ( 0.00%) 151.83
realaud 1113 ( 0.01%) 143241 ( 0.00%) 128.70
halflif 4544 ( 0.02%) 283404 ( 0.00%) 62.37
starcra 505 ( 0.00%) 108842 ( 0.00%) 215.53
everque 340 ( 0.00%) 67070 ( 0.00%) 197.26
unreal 140 ( 0.00%) 28297 ( 0.00%) 202.12
quake 111 ( 0.00%) 14360 ( 0.00%) 129.37
cuseeme 20 ( 0.00%) 3187 ( 0.00%) 159.35
other 5256273 ( 25.92%) 2659566526 ( 23.58%) 505.98
icmp 738251 ( 3.64%) 60896606 ( 0.54%) 82.49
ipip 327 ( 0.00%) 40542 ( 0.00%) 123.98
ipsec 103 ( 0.00%) 16274 ( 0.00%) 158.00
ip6 25226 ( 0.12%) 15486259 ( 0.14%) 613.90
other 12060 ( 0.06%) 3821459 ( 0.03%) 316.87
frag 8984 ( 0.04%) 8883498 ( 0.08%) 988.81
ip6 22189 ( 0.11%) 3919284 ( 0.03%) 176.63
tcp6 10559 ( 0.05%) 1923383 ( 0.02%) 182.16
http(s) 770 ( 0.00%) 129920 ( 0.00%) 168.73
http(c) 1956 ( 0.01%) 184186 ( 0.00%) 94.16
smtp 1988 ( 0.01%) 1043845 ( 0.01%) 525.07
ftp 2724 ( 0.01%) 278979 ( 0.00%) 102.42
dns 4 ( 0.00%) 457 ( 0.00%) 114.25
bgp 122 ( 0.00%) 17457 ( 0.00%) 143.09
other 2995 ( 0.01%) 268539 ( 0.00%) 89.66
udp6 7888 ( 0.04%) 1536924 ( 0.01%) 194.84
dns 7878 ( 0.04%) 1535824 ( 0.01%) 194.95
other 10 ( 0.00%) 1100 ( 0.00%) 110.00
icmp6 3688 ( 0.02%) 431682 ( 0.00%) 117.05
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
other6 24 ( 0.00%) 23215 ( 0.00%) 967.29
tcpdump file: 200908291400.dump.gz (511.03 MB)