Traffic Trace Info
DumpFile: 200910171400.dump
FileSize: 1435.86MB
Id: 200910171400
StartTime: Sat Oct 17 14:00:01 2009
EndTime: Sat Oct 17 14:15:01 2009
TotalTime: 900.09 seconds
TotalCapSize: 1122.79MB CapLen: 96 bytes
# of packets: 20516350 (10926.31MB)
AvgRate: 101.84Mbps stddev:19.03M
IP flow (unique src/dst pair) Information
# of flows: 756392 (avg. 27.12 pkts/flow)
Top 10 big flow size (bytes/total in %):
3.6% 2.4% 2.2% 2.1% 1.5% 1.2% 1.2% 1.1% 1.0% 1.0%
IP address Information
# of IPv4 addresses: 457491
Top 10 bandwidth usage (bytes/total in %):
12.6% 4.4% 4.3% 3.7% 3.4% 3.4% 3.0% 2.8% 2.4% 2.2%
# of IPv6 addresses: 823
Top 10 bandwidth usage (bytes/total in %):
65.9% 65.8% 5.5% 3.7% 3.2% 2.9% 2.7% 1.8% 1.7% 1.2%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](200910171400.pktlen.png)
detailed numbers
[ 32- 63]: 6347946
[ 64- 127]: 5499650
[ 128- 255]: 689813
[ 256- 511]: 617357
[ 512- 1023]: 448539
[ 1024- 2047]: 6913045
Protocol Breakdown
![[protocol breakdown chart]](200910171400.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 20516350 (100.00%) 11457068237 (100.00%) 558.44
ip 20401078 ( 99.44%) 11444978118 ( 99.89%) 561.00
tcp 17066183 ( 83.18%) 10231355640 ( 89.30%) 599.51
http(s) 5681522 ( 27.69%) 7577015057 ( 66.13%) 1333.62
http(c) 4721341 ( 23.01%) 460006765 ( 4.02%) 97.43
squid 1379464 ( 6.72%) 228244671 ( 1.99%) 165.46
smtp 327580 ( 1.60%) 71998572 ( 0.63%) 219.79
nntp 7 ( 0.00%) 428 ( 0.00%) 61.14
ftp 6934 ( 0.03%) 992006 ( 0.01%) 143.06
pop3 8690 ( 0.04%) 3788225 ( 0.03%) 435.93
imap 2921 ( 0.01%) 507188 ( 0.00%) 173.64
telnet 8849 ( 0.04%) 667203 ( 0.01%) 75.40
ssh 15963 ( 0.08%) 3080187 ( 0.03%) 192.96
dns 177397 ( 0.86%) 17203552 ( 0.15%) 96.98
bgp 150 ( 0.00%) 49355 ( 0.00%) 329.03
napster 674 ( 0.00%) 63741 ( 0.00%) 94.57
realaud 9351 ( 0.05%) 14085491 ( 0.12%) 1506.31
rtsp 77105 ( 0.38%) 58846406 ( 0.51%) 763.20
icecast 21592 ( 0.11%) 1492318 ( 0.01%) 69.11
hotline 74 ( 0.00%) 7325 ( 0.00%) 98.99
other 4626565 ( 22.55%) 1793306910 ( 15.65%) 387.61
udp 2758718 ( 13.45%) 1162948297 ( 10.15%) 421.55
dns 1024543 ( 4.99%) 192367185 ( 1.68%) 187.76
realaud 12256 ( 0.06%) 2649638 ( 0.02%) 216.19
halflif 46 ( 0.00%) 3724 ( 0.00%) 80.96
starcra 42 ( 0.00%) 6544 ( 0.00%) 155.81
everque 1234 ( 0.01%) 601644 ( 0.01%) 487.56
unreal 13 ( 0.00%) 1562 ( 0.00%) 120.15
quake 73 ( 0.00%) 9116 ( 0.00%) 124.88
cuseeme 5 ( 0.00%) 380 ( 0.00%) 76.00
other 1720235 ( 8.38%) 967160232 ( 8.44%) 562.23
icmp 549680 ( 2.68%) 45960464 ( 0.40%) 83.61
ipip 328 ( 0.00%) 40388 ( 0.00%) 123.13
ipsec 70 ( 0.00%) 11060 ( 0.00%) 158.00
ip6 24727 ( 0.12%) 4461196 ( 0.04%) 180.42
other 1372 ( 0.01%) 201073 ( 0.00%) 146.55
frag 1762 ( 0.01%) 1558826 ( 0.01%) 884.69
ip6 115272 ( 0.56%) 12090119 ( 0.11%) 104.88
tcp6 102259 ( 0.50%) 9526721 ( 0.08%) 93.16
http(s) 148 ( 0.00%) 138815 ( 0.00%) 937.94
http(c) 1600 ( 0.01%) 149740 ( 0.00%) 93.59
smtp 774 ( 0.00%) 387540 ( 0.00%) 500.70
ftp 12 ( 0.00%) 1117 ( 0.00%) 93.08
ssh 7 ( 0.00%) 1022 ( 0.00%) 146.00
dns 6 ( 0.00%) 2249 ( 0.00%) 374.83
bgp 109 ( 0.00%) 13677 ( 0.00%) 125.48
other 99603 ( 0.49%) 8832561 ( 0.08%) 88.68
udp6 8818 ( 0.04%) 2001268 ( 0.02%) 226.95
dns 8813 ( 0.04%) 2000718 ( 0.02%) 227.02
other 5 ( 0.00%) 550 ( 0.00%) 110.00
icmp6 4157 ( 0.02%) 550673 ( 0.00%) 132.47
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
other6 8 ( 0.00%) 7377 ( 0.00%) 922.12
tcpdump file: 200910171400.dump.gz (519.02 MB)