Traffic Trace Info
DumpFile: 200909161400.dump
FileSize: 1671.81MB
Id: 200909161400
StartTime: Wed Sep 16 14:00:01 2009
EndTime: Wed Sep 16 14:15:00 2009
TotalTime: 899.44 seconds
TotalCapSize: 1300.70MB CapLen: 96 bytes
# of packets: 24320865 (14684.20MB)
AvgRate: 136.96Mbps stddev:12.13M
IP flow (unique src/dst pair) Information
# of flows: 1512651 (avg. 16.08 pkts/flow)
Top 10 big flow size (bytes/total in %):
4.2% 2.2% 1.5% 1.1% 1.0% 1.0% 1.0% 0.8% 0.8% 0.8%
IP address Information
# of IPv4 addresses: 854290
Top 10 bandwidth usage (bytes/total in %):
20.0% 10.8% 5.4% 4.4% 4.3% 3.7% 3.5% 3.2% 2.8% 2.5%
# of IPv6 addresses: 990
Top 10 bandwidth usage (bytes/total in %):
22.1% 21.9% 19.2% 6.9% 5.7% 5.4% 5.4% 5.0% 4.3% 4.3%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](200909161400.pktlen.png)
detailed numbers
[ 32- 63]: 6178434
[ 64- 127]: 5892769
[ 128- 255]: 1373332
[ 256- 511]: 855203
[ 512- 1023]: 742505
[ 1024- 2047]: 9278622
Protocol Breakdown
![[protocol breakdown chart]](200909161400.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 24320865 (100.00%) 15397499952 (100.00%) 633.10
ip 24285335 ( 99.85%) 15391706212 ( 99.96%) 633.79
tcp 18787547 ( 77.25%) 13757153025 ( 89.35%) 732.25
http(s) 5858307 ( 24.09%) 7534372713 ( 48.93%) 1286.10
http(c) 4679171 ( 19.24%) 765421598 ( 4.97%) 163.58
squid 455613 ( 1.87%) 218718732 ( 1.42%) 480.05
smtp 232413 ( 0.96%) 84871225 ( 0.55%) 365.17
ftp 45715 ( 0.19%) 4731614 ( 0.03%) 103.50
pop3 16005 ( 0.07%) 6237463 ( 0.04%) 389.72
imap 1969 ( 0.01%) 510087 ( 0.00%) 259.06
telnet 9370 ( 0.04%) 690511 ( 0.00%) 73.69
ssh 34767 ( 0.14%) 11803410 ( 0.08%) 339.50
dns 6012 ( 0.02%) 6809437 ( 0.04%) 1132.64
bgp 166 ( 0.00%) 66024 ( 0.00%) 397.73
napster 207 ( 0.00%) 80291 ( 0.00%) 387.88
realaud 501 ( 0.00%) 127118 ( 0.00%) 253.73
rtsp 184271 ( 0.76%) 16599705 ( 0.11%) 90.08
icecast 5472 ( 0.02%) 2603644 ( 0.02%) 475.81
hotline 10 ( 0.00%) 796 ( 0.00%) 79.60
other 7256441 ( 29.84%) 5103344668 ( 33.14%) 703.28
udp 4638474 ( 19.07%) 1559151317 ( 10.13%) 336.13
dns 1137130 ( 4.68%) 225659947 ( 1.47%) 198.45
rip 1 ( 0.00%) 104 ( 0.00%) 104.00
realaud 98 ( 0.00%) 14749 ( 0.00%) 150.50
halflif 109 ( 0.00%) 20636 ( 0.00%) 189.32
starcra 1949 ( 0.01%) 1266379 ( 0.01%) 649.76
everque 524 ( 0.00%) 81171 ( 0.00%) 154.91
unreal 75 ( 0.00%) 14150 ( 0.00%) 188.67
quake 48 ( 0.00%) 8199 ( 0.00%) 170.81
cuseeme 12 ( 0.00%) 1714 ( 0.00%) 142.83
other 3497598 ( 14.38%) 1331619967 ( 8.65%) 380.72
icmp 840433 ( 3.46%) 71058171 ( 0.46%) 84.55
ipip 335 ( 0.00%) 41520 ( 0.00%) 123.94
ipsec 84 ( 0.00%) 13272 ( 0.00%) 158.00
ip6 16567 ( 0.07%) 3978044 ( 0.03%) 240.12
other 1895 ( 0.01%) 310863 ( 0.00%) 164.04
frag 17849 ( 0.07%) 15084600 ( 0.10%) 845.12
ip6 35530 ( 0.15%) 5793740 ( 0.04%) 163.07
tcp6 19656 ( 0.08%) 2781092 ( 0.02%) 141.49
http(s) 23 ( 0.00%) 12178 ( 0.00%) 529.48
http(c) 1812 ( 0.01%) 172696 ( 0.00%) 95.31
smtp 2366 ( 0.01%) 1148511 ( 0.01%) 485.42
ssh 32 ( 0.00%) 9888 ( 0.00%) 309.00
dns 9 ( 0.00%) 2548 ( 0.00%) 283.11
bgp 109 ( 0.00%) 19112 ( 0.00%) 175.34
other 15305 ( 0.06%) 1416159 ( 0.01%) 92.53
udp6 11846 ( 0.05%) 2522946 ( 0.02%) 212.98
dns 11838 ( 0.05%) 2522066 ( 0.02%) 213.05
other 8 ( 0.00%) 880 ( 0.00%) 110.00
icmp6 3982 ( 0.02%) 469333 ( 0.00%) 117.86
pim6 31 ( 0.00%) 4216 ( 0.00%) 136.00
other6 15 ( 0.00%) 16153 ( 0.00%) 1076.87
tcpdump file: 200909161400.dump.gz (621.53 MB)