Traffic Trace Info
DumpFile: 200910101400.dump
FileSize: 1889.93MB
Id: 200910101400
StartTime: Sat Oct 10 14:00:00 2009
EndTime: Sat Oct 10 14:15:00 2009
TotalTime: 900.13 seconds
TotalCapSize: 1458.71MB CapLen: 96 bytes
# of packets: 28259600 (17032.01MB)
AvgRate: 158.70Mbps stddev:11.62M
IP flow (unique src/dst pair) Information
# of flows: 1579304 (avg. 17.89 pkts/flow)
Top 10 big flow size (bytes/total in %):
4.7% 4.4% 2.1% 1.7% 0.9% 0.9% 0.9% 0.7% 0.7% 0.6%
IP address Information
# of IPv4 addresses: 914179
Top 10 bandwidth usage (bytes/total in %):
25.4% 5.5% 5.4% 4.8% 4.5% 4.5% 2.7% 2.5% 2.4% 2.2%
# of IPv6 addresses: 880
Top 10 bandwidth usage (bytes/total in %):
95.7% 92.2% 3.5% 0.5% 0.5% 0.3% 0.3% 0.2% 0.2% 0.2%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](200910101400.pktlen.png)
detailed numbers
[ 32- 63]: 6916059
[ 64- 127]: 6622389
[ 128- 255]: 1804836
[ 256- 511]: 876281
[ 512- 1023]: 1117902
[ 1024- 2047]: 10922133
Protocol Breakdown
![[protocol breakdown chart]](200910101400.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 28259600 (100.00%) 17859358168 (100.00%) 631.97
ip 28164438 ( 99.66%) 17778829685 ( 99.55%) 631.25
tcp 19696125 ( 69.70%) 14181451902 ( 79.41%) 720.01
http(s) 6729265 ( 23.81%) 8591420238 ( 48.11%) 1276.72
http(c) 4016045 ( 14.21%) 504077844 ( 2.82%) 125.52
squid 823403 ( 2.91%) 377277050 ( 2.11%) 458.19
smtp 225760 ( 0.80%) 46240792 ( 0.26%) 204.82
nntp 4 ( 0.00%) 256 ( 0.00%) 64.00
ftp 122310 ( 0.43%) 93166494 ( 0.52%) 761.72
pop3 9732 ( 0.03%) 3948524 ( 0.02%) 405.73
imap 1176 ( 0.00%) 259315 ( 0.00%) 220.51
telnet 19694 ( 0.07%) 1556698 ( 0.01%) 79.04
ssh 330731 ( 1.17%) 49336695 ( 0.28%) 149.17
dns 5577 ( 0.02%) 6890969 ( 0.04%) 1235.60
bgp 143 ( 0.00%) 45830 ( 0.00%) 320.49
napster 19 ( 0.00%) 1184 ( 0.00%) 62.32
realaud 3233 ( 0.01%) 262344 ( 0.00%) 81.15
rtsp 142081 ( 0.50%) 44381957 ( 0.25%) 312.37
icecast 16404 ( 0.06%) 2167246 ( 0.01%) 132.12
hotline 3 ( 0.00%) 186 ( 0.00%) 62.00
other 7250535 ( 25.66%) 4460417680 ( 24.98%) 615.18
udp 7798534 ( 27.60%) 3512115467 ( 19.67%) 450.36
dns 1209890 ( 4.28%) 220015437 ( 1.23%) 181.85
realaud 1034 ( 0.00%) 71187 ( 0.00%) 68.85
halflif 1321 ( 0.00%) 94527 ( 0.00%) 71.56
starcra 2356 ( 0.01%) 210635 ( 0.00%) 89.40
everque 5920 ( 0.02%) 4226033 ( 0.02%) 713.86
unreal 109 ( 0.00%) 20463 ( 0.00%) 187.73
quake 91 ( 0.00%) 16704 ( 0.00%) 183.56
cuseeme 20 ( 0.00%) 2425 ( 0.00%) 121.25
other 6574793 ( 23.27%) 3287018736 ( 18.41%) 499.94
icmp 627754 ( 2.22%) 72795859 ( 0.41%) 115.96
ipip 299 ( 0.00%) 35842 ( 0.00%) 119.87
ipsec 72 ( 0.00%) 11376 ( 0.00%) 158.00
ip6 40779 ( 0.14%) 12323416 ( 0.07%) 302.20
other 875 ( 0.00%) 95823 ( 0.00%) 109.51
frag 13486 ( 0.05%) 11078551 ( 0.06%) 821.49
ip6 95162 ( 0.34%) 80528483 ( 0.45%) 846.23
tcp6 81454 ( 0.29%) 78029175 ( 0.44%) 957.95
http(s) 38 ( 0.00%) 17138 ( 0.00%) 451.00
http(c) 3145 ( 0.01%) 291047 ( 0.00%) 92.54
smtp 1037 ( 0.00%) 459758 ( 0.00%) 443.35
ssh 1 ( 0.00%) 74 ( 0.00%) 74.00
dns 5 ( 0.00%) 1774 ( 0.00%) 354.80
bgp 123 ( 0.00%) 20652 ( 0.00%) 167.90
other 77105 ( 0.27%) 77238732 ( 0.43%) 1001.73
udp6 9602 ( 0.03%) 1939788 ( 0.01%) 202.02
dns 9569 ( 0.03%) 1936770 ( 0.01%) 202.40
halflif 1 ( 0.00%) 110 ( 0.00%) 110.00
other 32 ( 0.00%) 2908 ( 0.00%) 90.88
icmp6 4048 ( 0.01%) 526888 ( 0.00%) 130.16
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
other6 28 ( 0.00%) 28552 ( 0.00%) 1019.71
tcpdump file: 200910101400.dump.gz (716.09 MB)