Traffic Trace Info
DumpFile: 200910161400.dump
FileSize: 2549.64MB
Id: 200910161400
StartTime: Fri Oct 16 14:00:01 2009
EndTime: Fri Oct 16 14:15:01 2009
TotalTime: 900.14 seconds
TotalCapSize: 1978.29MB CapLen: 96 bytes
# of packets: 37443413 (20852.12MB)
AvgRate: 194.32Mbps stddev:18.45M
IP flow (unique src/dst pair) Information
# of flows: 1478364 (avg. 25.33 pkts/flow)
Top 10 big flow size (bytes/total in %):
0.9% 0.9% 0.8% 0.8% 0.7% 0.7% 0.7% 0.7% 0.6% 0.6%
IP address Information
# of IPv4 addresses: 866518
Top 10 bandwidth usage (bytes/total in %):
24.6% 6.6% 5.3% 2.9% 2.8% 2.3% 1.8% 1.7% 1.4% 1.4%
# of IPv6 addresses: 892
Top 10 bandwidth usage (bytes/total in %):
38.5% 38.4% 8.0% 5.2% 5.2% 3.9% 3.9% 3.2% 3.0% 2.9%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](200910161400.pktlen.png)
detailed numbers
[ 32- 63]: 10201600
[ 64- 127]: 9903858
[ 128- 255]: 1833896
[ 256- 511]: 1143025
[ 512- 1023]: 1078157
[ 1024- 2047]: 13282877
Protocol Breakdown
![[protocol breakdown chart]](200910161400.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 37443413 (100.00%) 21865032521 (100.00%) 583.95
ip 37380299 ( 99.83%) 21856371843 ( 99.96%) 584.70
tcp 28238091 ( 75.42%) 17858277975 ( 81.68%) 632.42
http(s) 9001206 ( 24.04%) 11408699013 ( 52.18%) 1267.46
http(c) 7273057 ( 19.42%) 875146475 ( 4.00%) 120.33
squid 1387513 ( 3.71%) 327751095 ( 1.50%) 236.21
smtp 329264 ( 0.88%) 102174166 ( 0.47%) 310.31
nntp 6 ( 0.00%) 362 ( 0.00%) 60.33
ftp 35639 ( 0.10%) 8651659 ( 0.04%) 242.76
pop3 19168 ( 0.05%) 6030338 ( 0.03%) 314.60
imap 5300 ( 0.01%) 688193 ( 0.00%) 129.85
telnet 11007 ( 0.03%) 853563 ( 0.00%) 77.55
ssh 692282 ( 1.85%) 102655537 ( 0.47%) 148.29
dns 6301 ( 0.02%) 6910054 ( 0.03%) 1096.66
bgp 168 ( 0.00%) 70010 ( 0.00%) 416.73
napster 14999 ( 0.04%) 7299044 ( 0.03%) 486.64
realaud 3756 ( 0.01%) 373160 ( 0.00%) 99.35
rtsp 218072 ( 0.58%) 45124877 ( 0.21%) 206.93
icecast 34947 ( 0.09%) 6763838 ( 0.03%) 193.55
hotline 21 ( 0.00%) 2188 ( 0.00%) 104.19
other 9205071 ( 24.58%) 4959065563 ( 22.68%) 538.73
udp 8379148 ( 22.38%) 3925696412 ( 17.95%) 468.51
dns 1217319 ( 3.25%) 220905933 ( 1.01%) 181.47
realaud 11832 ( 0.03%) 2627036 ( 0.01%) 222.03
halflif 119 ( 0.00%) 18488 ( 0.00%) 155.36
starcra 458 ( 0.00%) 94209 ( 0.00%) 205.70
everque 560 ( 0.00%) 107684 ( 0.00%) 192.29
unreal 112 ( 0.00%) 24896 ( 0.00%) 222.29
quake 82 ( 0.00%) 11257 ( 0.00%) 137.28
cuseeme 66 ( 0.00%) 6496 ( 0.00%) 98.42
other 7145946 ( 19.08%) 3701356757 ( 16.93%) 517.97
icmp 709510 ( 1.89%) 60862683 ( 0.28%) 85.78
ipip 329 ( 0.00%) 41662 ( 0.00%) 126.63
ipsec 361 ( 0.00%) 125598 ( 0.00%) 347.92
ip6 32169 ( 0.09%) 6434492 ( 0.03%) 200.02
other 20691 ( 0.06%) 4933021 ( 0.02%) 238.41
frag 22391 ( 0.06%) 19906288 ( 0.09%) 889.03
ip6 63114 ( 0.17%) 8660678 ( 0.04%) 137.22
tcp6 47469 ( 0.13%) 5382749 ( 0.02%) 113.40
http(s) 396 ( 0.00%) 316084 ( 0.00%) 798.19
http(c) 1687 ( 0.00%) 156737 ( 0.00%) 92.91
smtp 1481 ( 0.00%) 728993 ( 0.00%) 492.23
ftp 2553 ( 0.01%) 260251 ( 0.00%) 101.94
ssh 981 ( 0.00%) 175970 ( 0.00%) 179.38
dns 32 ( 0.00%) 4540 ( 0.00%) 141.88
bgp 106 ( 0.00%) 12949 ( 0.00%) 122.16
other 40233 ( 0.11%) 3727225 ( 0.02%) 92.64
udp6 11482 ( 0.03%) 2709965 ( 0.01%) 236.02
dns 11475 ( 0.03%) 2709195 ( 0.01%) 236.10
other 7 ( 0.00%) 770 ( 0.00%) 110.00
icmp6 4115 ( 0.01%) 548128 ( 0.00%) 133.20
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
other6 18 ( 0.00%) 15756 ( 0.00%) 875.33
tcpdump file: 200910161400.dump.gz (966.43 MB)