Traffic Trace Info
DumpFile: 200910011400.dump
FileSize: 2471.85MB
Id: 200910011400
StartTime: Thu Oct 1 14:00:00 2009
EndTime: Thu Oct 1 14:15:00 2009
TotalTime: 899.90 seconds
TotalCapSize: 1910.40MB CapLen: 96 bytes
# of packets: 36794446 (21569.68MB)
AvgRate: 201.06Mbps stddev:17.96M
IP flow (unique src/dst pair) Information
# of flows: 1599480 (avg. 23.00 pkts/flow)
Top 10 big flow size (bytes/total in %):
3.2% 1.3% 1.1% 1.0% 1.0% 0.9% 0.9% 0.9% 0.9% 0.7%
IP address Information
# of IPv4 addresses: 922040
Top 10 bandwidth usage (bytes/total in %):
24.9% 10.5% 7.9% 3.3% 3.3% 2.9% 2.7% 2.1% 1.7% 1.7%
# of IPv6 addresses: 916
Top 10 bandwidth usage (bytes/total in %):
42.1% 42.0% 6.6% 5.8% 4.7% 4.3% 4.3% 4.0% 3.7% 3.1%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](200910011400.pktlen.png)
detailed numbers
[ 32- 63]: 8219449
[ 64- 127]: 10775101
[ 128- 255]: 1933004
[ 256- 511]: 1029438
[ 512- 1023]: 1034896
[ 1024- 2047]: 13802558
Protocol Breakdown
![[protocol breakdown chart]](200910011400.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 36794446 (100.00%) 22617451753 (100.00%) 614.70
ip 36730116 ( 99.83%) 22608747127 ( 99.96%) 615.54
tcp 25268104 ( 68.67%) 17325655790 ( 76.60%) 685.67
http(s) 8345748 ( 22.68%) 10845412429 ( 47.95%) 1299.51
http(c) 7079383 ( 19.24%) 1009213491 ( 4.46%) 142.56
squid 811056 ( 2.20%) 214002540 ( 0.95%) 263.86
smtp 297838 ( 0.81%) 96722376 ( 0.43%) 324.75
nntp 36 ( 0.00%) 2781 ( 0.00%) 77.25
ftp 32615 ( 0.09%) 6311452 ( 0.03%) 193.51
pop3 21635 ( 0.06%) 4938758 ( 0.02%) 228.28
imap 1941 ( 0.01%) 219690 ( 0.00%) 113.18
telnet 3321 ( 0.01%) 1814087 ( 0.01%) 546.25
ssh 136126 ( 0.37%) 24602379 ( 0.11%) 180.73
dns 5795 ( 0.02%) 6881345 ( 0.03%) 1187.46
bgp 145 ( 0.00%) 50414 ( 0.00%) 347.68
napster 6495 ( 0.02%) 4649864 ( 0.02%) 715.91
realaud 1179 ( 0.00%) 189432 ( 0.00%) 160.67
rtsp 80334 ( 0.22%) 53825372 ( 0.24%) 670.02
icecast 10810 ( 0.03%) 2177299 ( 0.01%) 201.42
hotline 9 ( 0.00%) 547 ( 0.00%) 60.78
other 8433618 ( 22.92%) 5054640334 ( 22.35%) 599.34
udp 10604806 ( 28.82%) 5194529021 ( 22.97%) 489.83
dns 1285967 ( 3.50%) 207772754 ( 0.92%) 161.57
realaud 1998 ( 0.01%) 130014 ( 0.00%) 65.07
halflif 262 ( 0.00%) 24267 ( 0.00%) 92.62
starcra 520 ( 0.00%) 104382 ( 0.00%) 200.73
everque 1960 ( 0.01%) 885693 ( 0.00%) 451.88
unreal 197 ( 0.00%) 24570 ( 0.00%) 124.72
quake 73 ( 0.00%) 12172 ( 0.00%) 166.74
cuseeme 33 ( 0.00%) 4804 ( 0.00%) 145.58
other 9307195 ( 25.30%) 4984914231 ( 22.04%) 535.60
icmp 802279 ( 2.18%) 67579350 ( 0.30%) 84.23
ipip 303 ( 0.00%) 37982 ( 0.00%) 125.35
ipsec 76 ( 0.00%) 12008 ( 0.00%) 158.00
ip6 33225 ( 0.09%) 6235625 ( 0.03%) 187.68
other 21323 ( 0.06%) 14697351 ( 0.06%) 689.27
frag 33702 ( 0.09%) 25250843 ( 0.11%) 749.24
ip6 64330 ( 0.17%) 8704626 ( 0.04%) 135.31
tcp6 47841 ( 0.13%) 5476652 ( 0.02%) 114.48
http(s) 283 ( 0.00%) 341066 ( 0.00%) 1205.18
http(c) 43012 ( 0.12%) 3816574 ( 0.02%) 88.73
smtp 1332 ( 0.00%) 605497 ( 0.00%) 454.58
ftp 59 ( 0.00%) 7768 ( 0.00%) 131.66
ssh 1816 ( 0.00%) 384000 ( 0.00%) 211.45
dns 19 ( 0.00%) 5022 ( 0.00%) 264.32
bgp 119 ( 0.00%) 15399 ( 0.00%) 129.40
other 1201 ( 0.00%) 301326 ( 0.00%) 250.90
udp6 12949 ( 0.04%) 2787369 ( 0.01%) 215.26
dns 12936 ( 0.04%) 2785939 ( 0.01%) 215.36
other 13 ( 0.00%) 1430 ( 0.00%) 110.00
icmp6 3477 ( 0.01%) 410327 ( 0.00%) 118.01
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
other6 33 ( 0.00%) 26198 ( 0.00%) 793.88
tcpdump file: 200910011400.dump.gz (926.39 MB)