Traffic Trace Info
DumpFile: 200909251400.dump
FileSize: 2501.83MB
Id: 200909251400
StartTime: Fri Sep 25 14:00:00 2009
EndTime: Fri Sep 25 14:15:00 2009
TotalTime: 899.90 seconds
TotalCapSize: 1929.98MB CapLen: 96 bytes
# of packets: 37475960 (21513.94MB)
AvgRate: 200.55Mbps stddev:15.97M
IP flow (unique src/dst pair) Information
# of flows: 1753340 (avg. 21.37 pkts/flow)
Top 10 big flow size (bytes/total in %):
2.5% 1.4% 1.3% 0.9% 0.8% 0.8% 0.7% 0.6% 0.6% 0.6%
IP address Information
# of IPv4 addresses: 975383
Top 10 bandwidth usage (bytes/total in %):
28.8% 7.8% 3.0% 2.7% 2.5% 2.2% 2.1% 2.0% 1.5% 1.5%
# of IPv6 addresses: 962
Top 10 bandwidth usage (bytes/total in %):
21.6% 14.9% 12.9% 10.1% 7.4% 6.7% 5.3% 4.6% 3.9% 3.9%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](200909251400.pktlen.png)
detailed numbers
[ 32- 63]: 10783283
[ 64- 127]: 8605331
[ 128- 255]: 1991051
[ 256- 511]: 1340570
[ 512- 1023]: 1024440
[ 1024- 2047]: 13731285
Protocol Breakdown
![[protocol breakdown chart]](200909251400.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 37475960 (100.00%) 22559005265 (100.00%) 601.96
ip 37450142 ( 99.93%) 22552918770 ( 99.97%) 602.21
tcp 27456047 ( 73.26%) 18435652309 ( 81.72%) 671.46
http(s) 9064184 ( 24.19%) 11759664637 ( 52.13%) 1297.38
http(c) 6254067 ( 16.69%) 860932808 ( 3.82%) 137.66
squid 1471090 ( 3.93%) 322516774 ( 1.43%) 219.24
smtp 303400 ( 0.81%) 71178216 ( 0.32%) 234.60
nntp 339449 ( 0.91%) 20422378 ( 0.09%) 60.16
ftp 93350 ( 0.25%) 65279170 ( 0.29%) 699.29
pop3 17582 ( 0.05%) 8753500 ( 0.04%) 497.87
imap 5670 ( 0.02%) 1003549 ( 0.00%) 176.99
telnet 1711 ( 0.00%) 125857 ( 0.00%) 73.56
ssh 117160 ( 0.31%) 134498604 ( 0.60%) 1147.99
dns 5781 ( 0.02%) 6846702 ( 0.03%) 1184.35
bgp 146 ( 0.00%) 48042 ( 0.00%) 329.05
napster 542 ( 0.00%) 311723 ( 0.00%) 575.13
realaud 424 ( 0.00%) 46024 ( 0.00%) 108.55
rtsp 369012 ( 0.98%) 190398255 ( 0.84%) 515.97
icecast 47725 ( 0.13%) 26773790 ( 0.12%) 561.00
hotline 5 ( 0.00%) 304 ( 0.00%) 60.80
other 9364286 ( 24.99%) 4966824105 ( 22.02%) 530.40
udp 8896093 ( 23.74%) 3908483909 ( 17.33%) 439.35
dns 1371819 ( 3.66%) 227418005 ( 1.01%) 165.78
rip 2 ( 0.00%) 463 ( 0.00%) 231.50
realaud 113 ( 0.00%) 24449 ( 0.00%) 216.36
halflif 2808 ( 0.01%) 181452 ( 0.00%) 64.62
starcra 415 ( 0.00%) 89971 ( 0.00%) 216.80
everque 6005 ( 0.02%) 1811135 ( 0.01%) 301.60
unreal 130 ( 0.00%) 22962 ( 0.00%) 176.63
quake 93 ( 0.00%) 15050 ( 0.00%) 161.83
cuseeme 46 ( 0.00%) 9602 ( 0.00%) 208.74
other 7494486 ( 20.00%) 3677308091 ( 16.30%) 490.67
icmp 832163 ( 2.22%) 68932717 ( 0.31%) 82.84
ipip 332 ( 0.00%) 40896 ( 0.00%) 123.18
ipsec 246121 ( 0.66%) 135956646 ( 0.60%) 552.40
ip6 18371 ( 0.05%) 3736067 ( 0.02%) 203.37
other 1015 ( 0.00%) 116226 ( 0.00%) 114.51
frag 85579 ( 0.23%) 66323088 ( 0.29%) 774.99
ip6 25818 ( 0.07%) 6086495 ( 0.03%) 235.75
tcp6 10794 ( 0.03%) 3112629 ( 0.01%) 288.37
http(s) 1041 ( 0.00%) 1479770 ( 0.01%) 1421.49
http(c) 5351 ( 0.01%) 485666 ( 0.00%) 90.76
smtp 1640 ( 0.00%) 797326 ( 0.00%) 486.17
bgp 107 ( 0.00%) 13306 ( 0.00%) 124.36
other 2655 ( 0.01%) 336561 ( 0.00%) 126.76
udp6 12035 ( 0.03%) 2605600 ( 0.01%) 216.50
dns 12024 ( 0.03%) 2604382 ( 0.01%) 216.60
starcra 1 ( 0.00%) 112 ( 0.00%) 112.00
everque 1 ( 0.00%) 116 ( 0.00%) 116.00
other 9 ( 0.00%) 990 ( 0.00%) 110.00
icmp6 2936 ( 0.01%) 342389 ( 0.00%) 116.62
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
other6 23 ( 0.00%) 21797 ( 0.00%) 947.70
tcpdump file: 200909251400.dump.gz (942.18 MB)