Traffic Trace Info
DumpFile: 200908301400.dump
FileSize: 1184.47MB
Id: 200908301400
StartTime: Sun Aug 30 14:00:00 2009
EndTime: Sun Aug 30 14:15:00 2009
TotalTime: 899.73 seconds
TotalCapSize: 911.83MB CapLen: 96 bytes
# of packets: 17867022 (10614.65MB)
AvgRate: 98.95Mbps stddev:15.56M
IP flow (unique src/dst pair) Information
# of flows: 1196505 (avg. 14.93 pkts/flow)
Top 10 big flow size (bytes/total in %):
2.2% 2.2% 1.9% 1.7% 1.4% 1.4% 1.1% 1.1% 0.8% 0.8%
IP address Information
# of IPv4 addresses: 743459
Top 10 bandwidth usage (bytes/total in %):
20.2% 6.1% 6.0% 5.2% 4.4% 2.7% 2.5% 2.2% 2.2% 2.2%
# of IPv6 addresses: 841
Top 10 bandwidth usage (bytes/total in %):
15.0% 15.0% 13.0% 11.0% 9.9% 5.0% 4.7% 4.5% 4.2% 4.1%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](200908301400.pktlen.png)
detailed numbers
[ 32- 63]: 4596530
[ 64- 127]: 4097197
[ 128- 255]: 1175544
[ 256- 511]: 559021
[ 512- 1023]: 412955
[ 1024- 2047]: 7025775
Protocol Breakdown
![[protocol breakdown chart]](200908301400.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 17867022 (100.00%) 11130265462 (100.00%) 622.95
ip 17846311 ( 99.88%) 11127014386 ( 99.97%) 623.49
tcp 11974821 ( 67.02%) 8686773206 ( 78.05%) 725.42
http(s) 4277477 ( 23.94%) 5818580302 ( 52.28%) 1360.28
http(c) 2255969 ( 12.63%) 249912059 ( 2.25%) 110.78
squid 723788 ( 4.05%) 185820504 ( 1.67%) 256.73
smtp 222398 ( 1.24%) 32617161 ( 0.29%) 146.66
ftp 61020 ( 0.34%) 61305497 ( 0.55%) 1004.68
pop3 3970 ( 0.02%) 2154039 ( 0.02%) 542.58
imap 391 ( 0.00%) 107628 ( 0.00%) 275.26
telnet 3875 ( 0.02%) 373245 ( 0.00%) 96.32
ssh 19008 ( 0.11%) 2900708 ( 0.03%) 152.60
dns 8242 ( 0.05%) 6888872 ( 0.06%) 835.83
bgp 153 ( 0.00%) 60378 ( 0.00%) 394.63
napster 1552 ( 0.01%) 1180581 ( 0.01%) 760.68
realaud 1118 ( 0.01%) 92517 ( 0.00%) 82.75
rtsp 38775 ( 0.22%) 57087699 ( 0.51%) 1472.28
icecast 28637 ( 0.16%) 23673526 ( 0.21%) 826.68
hotline 3361 ( 0.02%) 2509781 ( 0.02%) 746.74
other 4325082 ( 24.21%) 2241508409 ( 20.14%) 518.26
udp 5141665 ( 28.78%) 2369698400 ( 21.29%) 460.88
dns 947677 ( 5.30%) 160063060 ( 1.44%) 168.90
realaud 1837 ( 0.01%) 123683 ( 0.00%) 67.33
halflif 1746 ( 0.01%) 113585 ( 0.00%) 65.05
starcra 440 ( 0.00%) 86639 ( 0.00%) 196.91
everque 270 ( 0.00%) 53370 ( 0.00%) 197.67
unreal 135 ( 0.00%) 25767 ( 0.00%) 190.87
quake 57 ( 0.00%) 8980 ( 0.00%) 157.54
cuseeme 26 ( 0.00%) 4371 ( 0.00%) 168.12
other 4188815 ( 23.44%) 2208881432 ( 19.85%) 527.33
icmp 650591 ( 3.64%) 51623022 ( 0.46%) 79.35
ipip 324 ( 0.00%) 39480 ( 0.00%) 121.85
ipsec 1592 ( 0.01%) 943296 ( 0.01%) 592.52
ip6 21667 ( 0.12%) 4845468 ( 0.04%) 223.63
other 55651 ( 0.31%) 13091514 ( 0.12%) 235.24
frag 52094 ( 0.29%) 70283072 ( 0.63%) 1349.16
ip6 20711 ( 0.12%) 3251076 ( 0.03%) 156.97
tcp6 8475 ( 0.05%) 1161110 ( 0.01%) 137.00
http(c) 1841 ( 0.01%) 171442 ( 0.00%) 93.12
smtp 817 ( 0.00%) 423342 ( 0.00%) 518.17
ftp 2709 ( 0.02%) 279043 ( 0.00%) 103.01
dns 10 ( 0.00%) 2275 ( 0.00%) 227.50
bgp 129 ( 0.00%) 18754 ( 0.00%) 145.38
other 2969 ( 0.02%) 266254 ( 0.00%) 89.68
udp6 8284 ( 0.05%) 1604469 ( 0.01%) 193.68
dns 8272 ( 0.05%) 1603149 ( 0.01%) 193.80
other 12 ( 0.00%) 1320 ( 0.00%) 110.00
icmp6 3900 ( 0.02%) 460016 ( 0.00%) 117.95
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
other6 22 ( 0.00%) 21401 ( 0.00%) 972.77
tcpdump file: 200908301400.dump.gz (435.40 MB)