Traffic Trace Info
DumpFile: 200909281400.dump
FileSize: 2736.91MB
Id: 200909281400
StartTime: Mon Sep 28 14:00:01 2009
EndTime: Mon Sep 28 14:15:00 2009
TotalTime: 899.38 seconds
TotalCapSize: -1980.24MB CapLen: 96 bytes
# of packets: 40692202 (23095.63MB)
AvgRate: 215.41Mbps stddev:14.91M
IP flow (unique src/dst pair) Information
# of flows: 1982167 (avg. 20.53 pkts/flow)
Top 10 big flow size (bytes/total in %):
6.0% 1.4% 1.3% 1.1% 0.9% 0.9% 0.8% 0.7% 0.6% 0.6%
IP address Information
# of IPv4 addresses: 1137261
Top 10 bandwidth usage (bytes/total in %):
23.4% 11.6% 7.5% 6.8% 6.1% 1.8% 1.7% 1.6% 1.5% 1.5%
# of IPv6 addresses: 1043
Top 10 bandwidth usage (bytes/total in %):
35.8% 35.8% 31.4% 31.3% 13.9% 11.5% 4.5% 4.5% 2.5% 1.6%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](200909281400.pktlen.png)
detailed numbers
[ 32- 63]: 10584673
[ 64- 127]: 10847554
[ 128- 255]: 2088651
[ 256- 511]: 1236286
[ 512- 1023]: 1257752
[ 1024- 2047]: 14677286
Protocol Breakdown
![[protocol breakdown chart]](200909281400.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 40692202 (100.00%) 24217525061 (100.00%) 595.14
ip 40517878 ( 99.57%) 24179532803 ( 99.84%) 596.76
tcp 29393871 ( 72.23%) 20194007701 ( 83.39%) 687.01
http(s) 8509770 ( 20.91%) 10123807238 ( 41.80%) 1189.67
http(c) 7593427 ( 18.66%) 2676306219 ( 11.05%) 352.45
squid 923896 ( 2.27%) 242125142 ( 1.00%) 262.07
smtp 427859 ( 1.05%) 92248613 ( 0.38%) 215.61
nntp 31 ( 0.00%) 6167 ( 0.00%) 198.94
ftp 82744 ( 0.20%) 6736919 ( 0.03%) 81.42
pop3 33696 ( 0.08%) 9679752 ( 0.04%) 287.27
imap 5973 ( 0.01%) 838236 ( 0.00%) 140.34
telnet 2848 ( 0.01%) 297518 ( 0.00%) 104.47
ssh 36628 ( 0.09%) 3421386 ( 0.01%) 93.41
dns 7378 ( 0.02%) 7098569 ( 0.03%) 962.13
bgp 145 ( 0.00%) 47748 ( 0.00%) 329.30
napster 572 ( 0.00%) 276221 ( 0.00%) 482.90
realaud 754 ( 0.00%) 87858 ( 0.00%) 116.52
rtsp 450084 ( 1.11%) 199483052 ( 0.82%) 443.21
icecast 8006 ( 0.02%) 2223330 ( 0.01%) 277.71
hotline 34 ( 0.00%) 9636 ( 0.00%) 283.41
other 11307016 ( 27.79%) 6829133497 ( 28.20%) 603.97
udp 9840008 ( 24.18%) 3860600143 ( 15.94%) 392.34
dns 1555919 ( 3.82%) 249550309 ( 1.03%) 160.39
rip 1 ( 0.00%) 104 ( 0.00%) 104.00
realaud 2897 ( 0.01%) 202841 ( 0.00%) 70.02
halflif 158 ( 0.00%) 23480 ( 0.00%) 148.61
starcra 739 ( 0.00%) 151504 ( 0.00%) 205.01
everque 713 ( 0.00%) 129773 ( 0.00%) 182.01
unreal 175 ( 0.00%) 30799 ( 0.00%) 175.99
quake 100 ( 0.00%) 15453 ( 0.00%) 154.53
cuseeme 44 ( 0.00%) 7615 ( 0.00%) 173.07
other 8272442 ( 20.33%) 3609353761 ( 14.90%) 436.31
icmp 1159955 ( 2.85%) 97244446 ( 0.40%) 83.83
ipip 323 ( 0.00%) 39852 ( 0.00%) 123.38
ip6 36150 ( 0.09%) 13243425 ( 0.05%) 366.35
other 87571 ( 0.22%) 14397236 ( 0.06%) 164.41
frag 40789 ( 0.10%) 32695173 ( 0.14%) 801.57
ip6 174324 ( 0.43%) 37992258 ( 0.16%) 217.94
tcp6 155730 ( 0.38%) 34294353 ( 0.14%) 220.22
http(s) 6256 ( 0.02%) 7918753 ( 0.03%) 1265.79
http(c) 1661 ( 0.00%) 158448 ( 0.00%) 95.39
smtp 1216 ( 0.00%) 619833 ( 0.00%) 509.73
ssh 30 ( 0.00%) 2580 ( 0.00%) 86.00
dns 30 ( 0.00%) 5554 ( 0.00%) 185.13
bgp 94 ( 0.00%) 11399 ( 0.00%) 121.27
other 146443 ( 0.36%) 25577786 ( 0.11%) 174.66
udp6 14829 ( 0.04%) 3233239 ( 0.01%) 218.03
dns 14735 ( 0.04%) 3220403 ( 0.01%) 218.55
other 94 ( 0.00%) 12836 ( 0.00%) 136.55
icmp6 3722 ( 0.01%) 449968 ( 0.00%) 120.89
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
other6 13 ( 0.00%) 10618 ( 0.00%) 816.77
tcpdump file: 200909281400.dump.gz (1041.19 MB)