Traffic Trace Info
DumpFile: 200909291400.dump
FileSize: 2697.84MB
Id: 200909291400
StartTime: Tue Sep 29 14:00:01 2009
EndTime: Tue Sep 29 14:15:00 2009
TotalTime: 899.15 seconds
TotalCapSize: -2007.40MB CapLen: 96 bytes
# of packets: 39924625 (24004.93MB)
AvgRate: 223.97Mbps stddev:19.03M
IP flow (unique src/dst pair) Information
# of flows: 1623701 (avg. 24.59 pkts/flow)
Top 10 big flow size (bytes/total in %):
2.2% 2.0% 1.6% 1.5% 0.9% 0.8% 0.7% 0.7% 0.7% 0.7%
IP address Information
# of IPv4 addresses: 958618
Top 10 bandwidth usage (bytes/total in %):
22.8% 7.9% 4.8% 3.9% 3.2% 2.4% 2.3% 2.3% 2.1% 1.7%
# of IPv6 addresses: 971
Top 10 bandwidth usage (bytes/total in %):
9.3% 9.1% 7.6% 7.5% 6.8% 6.2% 5.6% 5.6% 5.2% 5.2%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](200909291400.pktlen.png)
detailed numbers
[ 32- 63]: 9667290
[ 64- 127]: 10362859
[ 128- 255]: 2077026
[ 256- 511]: 1151795
[ 512- 1023]: 1121432
[ 1024- 2047]: 15544223
Protocol Breakdown
![[protocol breakdown chart]](200909291400.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 39924625 (100.00%) 25170993764 (100.00%) 630.46
ip 39896030 ( 99.93%) 25165281034 ( 99.98%) 630.77
tcp 29471739 ( 73.82%) 21261140250 ( 84.47%) 721.41
http(s) 9757088 ( 24.44%) 12511009170 ( 49.70%) 1282.25
http(c) 7946479 ( 19.90%) 1506560510 ( 5.99%) 189.59
squid 797438 ( 2.00%) 294675045 ( 1.17%) 369.53
smtp 334503 ( 0.84%) 113962789 ( 0.45%) 340.69
nntp 1 ( 0.00%) 62 ( 0.00%) 62.00
ftp 34646 ( 0.09%) 10318932 ( 0.04%) 297.84
pop3 19842 ( 0.05%) 6277718 ( 0.02%) 316.39
imap 3400 ( 0.01%) 628927 ( 0.00%) 184.98
telnet 7028 ( 0.02%) 589158 ( 0.00%) 83.83
ssh 32464 ( 0.08%) 5234601 ( 0.02%) 161.24
dns 5949 ( 0.01%) 7056960 ( 0.03%) 1186.24
bgp 141 ( 0.00%) 47578 ( 0.00%) 337.43
napster 55567 ( 0.14%) 46002448 ( 0.18%) 827.87
realaud 1361 ( 0.00%) 164111 ( 0.00%) 120.58
rtsp 444483 ( 1.11%) 139156713 ( 0.55%) 313.08
icecast 27521 ( 0.07%) 12358995 ( 0.05%) 449.08
hotline 3 ( 0.00%) 186 ( 0.00%) 62.00
other 10001918 ( 25.05%) 6606981927 ( 26.25%) 660.57
udp 9355563 ( 23.43%) 3708422104 ( 14.73%) 396.39
dns 1649638 ( 4.13%) 260748311 ( 1.04%) 158.06
rip 1 ( 0.00%) 104 ( 0.00%) 104.00
realaud 12112 ( 0.03%) 10602830 ( 0.04%) 875.40
halflif 114 ( 0.00%) 19767 ( 0.00%) 173.39
starcra 558 ( 0.00%) 114871 ( 0.00%) 205.86
everque 640 ( 0.00%) 120160 ( 0.00%) 187.75
unreal 135 ( 0.00%) 24414 ( 0.00%) 180.84
quake 81 ( 0.00%) 10760 ( 0.00%) 132.84
cuseeme 52 ( 0.00%) 6866 ( 0.00%) 132.04
other 7690691 ( 19.26%) 3436384463 ( 13.65%) 446.82
icmp 805229 ( 2.02%) 66194309 ( 0.26%) 82.21
ipip 319 ( 0.00%) 38784 ( 0.00%) 121.58
ipsec 161 ( 0.00%) 26630 ( 0.00%) 165.40
ip6 152408 ( 0.38%) 87994859 ( 0.35%) 577.36
other 110611 ( 0.28%) 41464098 ( 0.16%) 374.86
frag 13000 ( 0.03%) 10901442 ( 0.04%) 838.57
ip6 28595 ( 0.07%) 5712730 ( 0.02%) 199.78
tcp6 10331 ( 0.03%) 2013103 ( 0.01%) 194.86
http(s) 605 ( 0.00%) 536703 ( 0.00%) 887.11
http(c) 1780 ( 0.00%) 166380 ( 0.00%) 93.47
smtp 751 ( 0.00%) 377770 ( 0.00%) 503.02
ssh 1793 ( 0.00%) 310070 ( 0.00%) 172.93
dns 15 ( 0.00%) 2172 ( 0.00%) 144.80
bgp 116 ( 0.00%) 20550 ( 0.00%) 177.16
other 5271 ( 0.01%) 599458 ( 0.00%) 113.73
udp6 14734 ( 0.04%) 3280146 ( 0.01%) 222.62
dns 14716 ( 0.04%) 3277878 ( 0.01%) 222.74
other 18 ( 0.00%) 2268 ( 0.00%) 126.00
icmp6 3495 ( 0.01%) 410699 ( 0.00%) 117.51
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
other6 5 ( 0.00%) 4702 ( 0.00%) 940.40
tcpdump file: 200909291400.dump.gz (1007.05 MB)