Traffic Trace Info
DumpFile: 200909131400.dump
FileSize: 1442.31MB
Id: 200909131400
StartTime: Sun Sep 13 14:00:00 2009
EndTime: Sun Sep 13 14:15:00 2009
TotalTime: 899.89 seconds
TotalCapSize: 1112.67MB CapLen: 96 bytes
# of packets: 21602240 (12997.25MB)
AvgRate: 121.17Mbps stddev:15.60M
IP flow (unique src/dst pair) Information
# of flows: 1187753 (avg. 18.19 pkts/flow)
Top 10 big flow size (bytes/total in %):
5.5% 2.6% 2.5% 1.4% 1.3% 1.2% 1.2% 1.1% 1.1% 1.1%
IP address Information
# of IPv4 addresses: 738313
Top 10 bandwidth usage (bytes/total in %):
16.8% 13.6% 8.1% 5.5% 3.7% 3.2% 2.9% 2.7% 2.6% 2.6%
# of IPv6 addresses: 1670
Top 10 bandwidth usage (bytes/total in %):
27.1% 25.4% 25.4% 8.1% 7.7% 7.2% 6.7% 5.1% 4.0% 3.2%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](200909131400.pktlen.png)
detailed numbers
[ 32- 63]: 5831099
[ 64- 127]: 4839015
[ 128- 255]: 1101361
[ 256- 511]: 693175
[ 512- 1023]: 534548
[ 1024- 2047]: 8603042
Protocol Breakdown
![[protocol breakdown chart]](200909131400.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 21602240 (100.00%) 13628603169 (100.00%) 630.89
ip 21562897 ( 99.82%) 13622499957 ( 99.96%) 631.76
tcp 15540796 ( 71.94%) 11122252894 ( 81.61%) 715.68
http(s) 5220207 ( 24.17%) 7066874869 ( 51.85%) 1353.75
http(c) 2716104 ( 12.57%) 308229746 ( 2.26%) 113.48
squid 1908030 ( 8.83%) 310595263 ( 2.28%) 162.78
smtp 164849 ( 0.76%) 33883527 ( 0.25%) 205.54
ftp 16396 ( 0.08%) 1618880 ( 0.01%) 98.74
pop3 7483 ( 0.03%) 5559018 ( 0.04%) 742.89
imap 1251 ( 0.01%) 886002 ( 0.01%) 708.24
telnet 298 ( 0.00%) 56752 ( 0.00%) 190.44
ssh 80166 ( 0.37%) 8510605 ( 0.06%) 106.16
dns 5935 ( 0.03%) 6791832 ( 0.05%) 1144.37
bgp 153 ( 0.00%) 42652 ( 0.00%) 278.77
napster 1497 ( 0.01%) 1675277 ( 0.01%) 1119.09
realaud 541 ( 0.00%) 78116 ( 0.00%) 144.39
rtsp 66102 ( 0.31%) 11403454 ( 0.08%) 172.51
icecast 1441 ( 0.01%) 248520 ( 0.00%) 172.46
hotline 81 ( 0.00%) 7322 ( 0.00%) 90.40
other 5350189 ( 24.77%) 3365691999 ( 24.70%) 629.08
udp 5280055 ( 24.44%) 2433846534 ( 17.86%) 460.95
dns 861155 ( 3.99%) 134381226 ( 0.99%) 156.05
rip 4 ( 0.00%) 1106 ( 0.00%) 276.50
realaud 979 ( 0.00%) 63777 ( 0.00%) 65.15
halflif 10787 ( 0.05%) 655960 ( 0.00%) 60.81
starcra 26068 ( 0.12%) 1838080 ( 0.01%) 70.51
everque 2723 ( 0.01%) 1966567 ( 0.01%) 722.21
unreal 82 ( 0.00%) 16595 ( 0.00%) 202.38
quake 70 ( 0.00%) 12110 ( 0.00%) 173.00
cuseeme 15 ( 0.00%) 2749 ( 0.00%) 183.27
other 4377593 ( 20.26%) 2294594718 ( 16.84%) 524.17
icmp 717687 ( 3.32%) 60009074 ( 0.44%) 83.61
ipip 324 ( 0.00%) 39856 ( 0.00%) 123.01
ipsec 88 ( 0.00%) 13904 ( 0.00%) 158.00
ip6 21722 ( 0.10%) 5878110 ( 0.04%) 270.61
other 2225 ( 0.01%) 459585 ( 0.00%) 206.56
frag 5642 ( 0.03%) 5447469 ( 0.04%) 965.52
ip6 39343 ( 0.18%) 6103212 ( 0.04%) 155.13
tcp6 26570 ( 0.12%) 3717169 ( 0.03%) 139.90
http(c) 4012 ( 0.02%) 368998 ( 0.00%) 91.97
smtp 3250 ( 0.02%) 1649838 ( 0.01%) 507.64
ftp 41 ( 0.00%) 3646 ( 0.00%) 88.93
bgp 115 ( 0.00%) 14672 ( 0.00%) 127.58
other 19152 ( 0.09%) 1680015 ( 0.01%) 87.72
udp6 9370 ( 0.04%) 1818336 ( 0.01%) 194.06
dns 7937 ( 0.04%) 1599013 ( 0.01%) 201.46
everque 2 ( 0.00%) 255 ( 0.00%) 127.50
other 1431 ( 0.01%) 219068 ( 0.00%) 153.09
icmp6 3156 ( 0.01%) 370572 ( 0.00%) 117.42
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
other6 217 ( 0.00%) 193055 ( 0.00%) 889.65
tcpdump file: 200909131400.dump.gz (538.70 MB)