Traffic Trace Info
DumpFile: 200909221400.dump
FileSize: 1925.04MB
Id: 200909221400
StartTime: Tue Sep 22 14:00:01 2009
EndTime: Tue Sep 22 14:15:00 2009
TotalTime: 899.53 seconds
TotalCapSize: 1483.17MB CapLen: 96 bytes
# of packets: 28958159 (16463.72MB)
AvgRate: 153.52Mbps stddev:14.36M
IP flow (unique src/dst pair) Information
# of flows: 1518465 (avg. 19.07 pkts/flow)
Top 10 big flow size (bytes/total in %):
1.9% 1.4% 1.1% 1.0% 1.0% 1.0% 0.9% 0.8% 0.8% 0.7%
IP address Information
# of IPv4 addresses: 894175
Top 10 bandwidth usage (bytes/total in %):
36.4% 9.0% 3.9% 3.8% 2.5% 2.0% 2.0% 1.9% 1.7% 1.6%
# of IPv6 addresses: 898
Top 10 bandwidth usage (bytes/total in %):
34.7% 34.6% 13.3% 13.0% 13.0% 5.7% 4.3% 4.3% 3.1% 2.9%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](200909221400.pktlen.png)
detailed numbers
[ 32- 63]: 8308865
[ 64- 127]: 6695600
[ 128- 255]: 1698041
[ 256- 511]: 856931
[ 512- 1023]: 677762
[ 1024- 2047]: 10720960
Protocol Breakdown
![[protocol breakdown chart]](200909221400.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 28958159 (100.00%) 17263457651 (100.00%) 596.15
ip 28915229 ( 99.85%) 17256734938 ( 99.96%) 596.80
tcp 20479784 ( 70.72%) 13937591157 ( 80.73%) 680.55
http(s) 5630882 ( 19.44%) 7333135196 ( 42.48%) 1302.31
http(c) 3628453 ( 12.53%) 395640106 ( 2.29%) 109.04
squid 1322357 ( 4.57%) 331964486 ( 1.92%) 251.04
smtp 325089 ( 1.12%) 62800714 ( 0.36%) 193.18
ftp 22383 ( 0.08%) 2628685 ( 0.02%) 117.44
pop3 30626 ( 0.11%) 32994995 ( 0.19%) 1077.35
imap 2277 ( 0.01%) 1338744 ( 0.01%) 587.94
telnet 4881 ( 0.02%) 359534 ( 0.00%) 73.66
ssh 21550 ( 0.07%) 6091909 ( 0.04%) 282.69
dns 5785 ( 0.02%) 6815716 ( 0.04%) 1178.17
bgp 147 ( 0.00%) 47435 ( 0.00%) 322.69
napster 180 ( 0.00%) 16641 ( 0.00%) 92.45
realaud 1045 ( 0.00%) 129818 ( 0.00%) 124.23
rtsp 127703 ( 0.44%) 126536634 ( 0.73%) 990.87
icecast 391194 ( 1.35%) 340062194 ( 1.97%) 869.29
hotline 69 ( 0.00%) 5367 ( 0.00%) 77.78
other 8964968 ( 30.96%) 5296925119 ( 30.68%) 590.85
udp 7477006 ( 25.82%) 3200659005 ( 18.54%) 428.07
dns 1151709 ( 3.98%) 180132635 ( 1.04%) 156.40
rip 1 ( 0.00%) 104 ( 0.00%) 104.00
realaud 281 ( 0.00%) 38260 ( 0.00%) 136.16
halflif 122 ( 0.00%) 19015 ( 0.00%) 155.86
starcra 461 ( 0.00%) 97392 ( 0.00%) 211.26
everque 515 ( 0.00%) 92261 ( 0.00%) 179.15
unreal 118 ( 0.00%) 21699 ( 0.00%) 183.89
quake 73 ( 0.00%) 12482 ( 0.00%) 170.99
cuseeme 25 ( 0.00%) 4362 ( 0.00%) 174.48
other 6322613 ( 21.83%) 3020070480 ( 17.49%) 477.66
icmp 835768 ( 2.89%) 67899649 ( 0.39%) 81.24
ipip 342 ( 0.00%) 40644 ( 0.00%) 118.84
ipsec 78 ( 0.00%) 12226 ( 0.00%) 156.74
ip6 20688 ( 0.07%) 5274701 ( 0.03%) 254.96
other 101563 ( 0.35%) 45257556 ( 0.26%) 445.61
frag 12906 ( 0.04%) 10764072 ( 0.06%) 834.04
ip6 42930 ( 0.15%) 6722713 ( 0.04%) 156.60
tcp6 30469 ( 0.11%) 4411013 ( 0.03%) 144.77
http(s) 49 ( 0.00%) 23813 ( 0.00%) 485.98
http(c) 1632 ( 0.01%) 149021 ( 0.00%) 91.31
squid 6 ( 0.00%) 508 ( 0.00%) 84.67
smtp 1881 ( 0.01%) 919549 ( 0.01%) 488.86
ftp 30 ( 0.00%) 3764 ( 0.00%) 125.47
ssh 30 ( 0.00%) 2580 ( 0.00%) 86.00
dns 2 ( 0.00%) 257 ( 0.00%) 128.50
bgp 119 ( 0.00%) 15906 ( 0.00%) 133.66
other 26720 ( 0.09%) 3295615 ( 0.02%) 123.34
udp6 9310 ( 0.03%) 1909731 ( 0.01%) 205.13
dns 9298 ( 0.03%) 1908418 ( 0.01%) 205.25
quake 1 ( 0.00%) 103 ( 0.00%) 103.00
other 11 ( 0.00%) 1210 ( 0.00%) 110.00
icmp6 3084 ( 0.01%) 364559 ( 0.00%) 118.21
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
other6 37 ( 0.00%) 33330 ( 0.00%) 900.81
tcpdump file: 200909221400.dump.gz (739.99 MB)