Traffic Trace Info
DumpFile: 200909301400.dump
FileSize: 2484.88MB
Id: 200909301400
StartTime: Wed Sep 30 14:00:01 2009
EndTime: Wed Sep 30 14:15:01 2009
TotalTime: 899.61 seconds
TotalCapSize: 1926.39MB CapLen: 96 bytes
# of packets: 36600971 (21265.55MB)
AvgRate: 198.30Mbps stddev:14.79M
IP flow (unique src/dst pair) Information
# of flows: 1477058 (avg. 24.78 pkts/flow)
Top 10 big flow size (bytes/total in %):
2.1% 2.1% 1.8% 1.4% 1.2% 0.7% 0.7% 0.7% 0.7% 0.7%
IP address Information
# of IPv4 addresses: 875224
Top 10 bandwidth usage (bytes/total in %):
14.4% 13.2% 7.4% 5.1% 3.7% 3.5% 3.4% 2.2% 2.2% 2.1%
# of IPv6 addresses: 977
Top 10 bandwidth usage (bytes/total in %):
47.3% 47.3% 31.0% 30.9% 1.7% 1.7% 1.6% 1.4% 1.4% 1.3%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](200909301400.pktlen.png)
detailed numbers
[ 32- 63]: 9525587
[ 64- 127]: 9806224
[ 128- 255]: 1651345
[ 256- 511]: 887498
[ 512- 1023]: 872624
[ 1024- 2047]: 13857693
Protocol Breakdown
![[protocol breakdown chart]](200909301400.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 36600971 (100.00%) 22298549400 (100.00%) 609.23
ip 36440789 ( 99.56%) 22274563980 ( 99.89%) 611.25
tcp 27199893 ( 74.31%) 18048198466 ( 80.94%) 663.54
http(s) 8354707 ( 22.83%) 10645421753 ( 47.74%) 1274.18
http(c) 8226524 ( 22.48%) 1477553530 ( 6.63%) 179.61
squid 834098 ( 2.28%) 237041610 ( 1.06%) 284.19
smtp 299475 ( 0.82%) 94986764 ( 0.43%) 317.18
nntp 333612 ( 0.91%) 20178994 ( 0.09%) 60.49
ftp 25182 ( 0.07%) 2889414 ( 0.01%) 114.74
pop3 25217 ( 0.07%) 13033056 ( 0.06%) 516.84
imap 12400 ( 0.03%) 1624372 ( 0.01%) 131.00
telnet 5187 ( 0.01%) 1216715 ( 0.01%) 234.57
ssh 455118 ( 1.24%) 62102446 ( 0.28%) 136.45
dns 6446 ( 0.02%) 6956861 ( 0.03%) 1079.25
bgp 395 ( 0.00%) 112870 ( 0.00%) 285.75
napster 61 ( 0.00%) 7205 ( 0.00%) 118.11
realaud 1017 ( 0.00%) 128298 ( 0.00%) 126.15
rtsp 262710 ( 0.72%) 70446601 ( 0.32%) 268.15
icecast 14745 ( 0.04%) 5077601 ( 0.02%) 344.36
hotline 73 ( 0.00%) 7490 ( 0.00%) 102.60
other 8342334 ( 22.79%) 5409377366 ( 24.26%) 648.42
udp 8339647 ( 22.79%) 4141649051 ( 18.57%) 496.62
dns 1212997 ( 3.31%) 163452202 ( 0.73%) 134.75
rip 3 ( 0.00%) 224 ( 0.00%) 74.67
realaud 2180 ( 0.01%) 159459 ( 0.00%) 73.15
halflif 2869 ( 0.01%) 177665 ( 0.00%) 61.93
starcra 299 ( 0.00%) 56596 ( 0.00%) 189.28
everque 855 ( 0.00%) 220783 ( 0.00%) 258.23
unreal 104 ( 0.00%) 17191 ( 0.00%) 165.30
quake 47 ( 0.00%) 5445 ( 0.00%) 115.85
cuseeme 14 ( 0.00%) 1949 ( 0.00%) 139.21
other 7112059 ( 19.43%) 3976869018 ( 17.83%) 559.17
icmp 821094 ( 2.24%) 67524915 ( 0.30%) 82.24
ipip 310 ( 0.00%) 38560 ( 0.00%) 124.39
ipsec 500 ( 0.00%) 89592 ( 0.00%) 179.18
ip6 32125 ( 0.09%) 8384495 ( 0.04%) 261.00
other 47220 ( 0.13%) 8678901 ( 0.04%) 183.80
frag 81340 ( 0.22%) 62599634 ( 0.28%) 769.60
ip6 160182 ( 0.44%) 23985420 ( 0.11%) 149.74
tcp6 142334 ( 0.39%) 20297864 ( 0.09%) 142.61
http(s) 5869 ( 0.02%) 8206616 ( 0.04%) 1398.30
http(c) 1825 ( 0.00%) 168925 ( 0.00%) 92.56
smtp 400 ( 0.00%) 165358 ( 0.00%) 413.39
ssh 1803 ( 0.00%) 327858 ( 0.00%) 181.84
dns 10 ( 0.00%) 1237 ( 0.00%) 123.70
bgp 99 ( 0.00%) 12275 ( 0.00%) 123.99
other 132328 ( 0.36%) 11415595 ( 0.05%) 86.27
udp6 14074 ( 0.04%) 3191850 ( 0.01%) 226.79
dns 14063 ( 0.04%) 3190650 ( 0.01%) 226.88
realaud 1 ( 0.00%) 100 ( 0.00%) 100.00
other 10 ( 0.00%) 1100 ( 0.00%) 110.00
icmp6 3684 ( 0.01%) 439217 ( 0.00%) 119.22
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
other6 60 ( 0.00%) 52409 ( 0.00%) 873.48
tcpdump file: 200909301400.dump.gz (904.84 MB)