Traffic Trace Info
DumpFile: 200910181400.dump
FileSize: 1150.77MB
Id: 200910181400
StartTime: Sun Oct 18 14:00:00 2009
EndTime: Sun Oct 18 14:15:01 2009
TotalTime: 900.37 seconds
TotalCapSize: 898.62MB CapLen: 96 bytes
# of packets: 16524612 (8824.72MB)
AvgRate: 82.21Mbps stddev:16.16M
IP flow (unique src/dst pair) Information
# of flows: 807407 (avg. 20.47 pkts/flow)
Top 10 big flow size (bytes/total in %):
2.7% 2.5% 2.2% 1.8% 1.6% 1.6% 1.5% 1.5% 1.4% 1.2%
IP address Information
# of IPv4 addresses: 450678
Top 10 bandwidth usage (bytes/total in %):
6.2% 4.9% 4.6% 4.0% 2.9% 2.9% 2.7% 2.6% 2.6% 2.4%
# of IPv6 addresses: 757
Top 10 bandwidth usage (bytes/total in %):
16.5% 9.4% 9.1% 8.8% 6.7% 6.6% 6.3% 4.7% 4.6% 4.4%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](200910181400.pktlen.png)
detailed numbers
[ 32- 63]: 4443274
[ 64- 127]: 4802963
[ 128- 255]: 708828
[ 256- 511]: 518486
[ 512- 1023]: 329605
[ 1024- 2047]: 5721456
Protocol Breakdown
![[protocol breakdown chart]](200910181400.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 16524612 (100.00%) 9253384864 (100.00%) 559.98
ip 16508237 ( 99.90%) 9249776625 ( 99.96%) 560.31
tcp 12857265 ( 77.81%) 7686534999 ( 83.07%) 597.84
http(s) 4108147 ( 24.86%) 5570310080 ( 60.20%) 1355.92
http(c) 2713561 ( 16.42%) 263637525 ( 2.85%) 97.16
squid 1133761 ( 6.86%) 355752585 ( 3.84%) 313.78
smtp 240196 ( 1.45%) 38962296 ( 0.42%) 162.21
nntp 30 ( 0.00%) 2272 ( 0.00%) 75.73
ftp 27697 ( 0.17%) 2478125 ( 0.03%) 89.47
pop3 13469 ( 0.08%) 5175389 ( 0.06%) 384.24
imap 2275 ( 0.01%) 191472 ( 0.00%) 84.16
telnet 10058 ( 0.06%) 741927 ( 0.01%) 73.76
ssh 144691 ( 0.88%) 28424143 ( 0.31%) 196.45
dns 136426 ( 0.83%) 16227833 ( 0.18%) 118.95
bgp 162 ( 0.00%) 58287 ( 0.00%) 359.80
napster 3266 ( 0.02%) 1389745 ( 0.02%) 425.52
realaud 54 ( 0.00%) 8938 ( 0.00%) 165.52
rtsp 215 ( 0.00%) 32908 ( 0.00%) 153.06
icecast 7674 ( 0.05%) 486257 ( 0.01%) 63.36
hotline 13 ( 0.00%) 1063 ( 0.00%) 81.77
other 4315567 ( 26.12%) 1402653974 ( 15.16%) 325.02
udp 3033736 ( 18.36%) 1494036440 ( 16.15%) 492.47
dns 853425 ( 5.16%) 138731095 ( 1.50%) 162.56
realaud 1862 ( 0.01%) 113395 ( 0.00%) 60.90
halflif 30 ( 0.00%) 2568 ( 0.00%) 85.60
starcra 65 ( 0.00%) 9847 ( 0.00%) 151.49
everque 218 ( 0.00%) 35376 ( 0.00%) 162.28
unreal 25 ( 0.00%) 2778 ( 0.00%) 111.12
quake 21 ( 0.00%) 2338 ( 0.00%) 111.33
cuseeme 7 ( 0.00%) 1702 ( 0.00%) 243.14
other 2177983 ( 13.18%) 1355087287 ( 14.64%) 622.18
icmp 568142 ( 3.44%) 48015525 ( 0.52%) 84.51
ipip 308 ( 0.00%) 37264 ( 0.00%) 120.99
ipsec 3892 ( 0.02%) 1211984 ( 0.01%) 311.40
ip6 31064 ( 0.19%) 12082261 ( 0.13%) 388.95
other 13830 ( 0.08%) 7858152 ( 0.08%) 568.20
frag 1126 ( 0.01%) 1118334 ( 0.01%) 993.19
ip6 16375 ( 0.10%) 3608239 ( 0.04%) 220.35
tcp6 5023 ( 0.03%) 1484856 ( 0.02%) 295.61
http(s) 604 ( 0.00%) 574712 ( 0.01%) 951.51
http(c) 1774 ( 0.01%) 175953 ( 0.00%) 99.18
smtp 1129 ( 0.01%) 589769 ( 0.01%) 522.38
ssh 1 ( 0.00%) 74 ( 0.00%) 74.00
dns 5 ( 0.00%) 541 ( 0.00%) 108.20
bgp 110 ( 0.00%) 13971 ( 0.00%) 127.01
other 1400 ( 0.01%) 129836 ( 0.00%) 92.74
udp6 8043 ( 0.05%) 1661473 ( 0.02%) 206.57
dns 8035 ( 0.05%) 1660593 ( 0.02%) 206.67
other 8 ( 0.00%) 880 ( 0.00%) 110.00
icmp6 3269 ( 0.02%) 447144 ( 0.00%) 136.78
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
other6 10 ( 0.00%) 10686 ( 0.00%) 1068.60
tcpdump file: 200910181400.dump.gz (419.08 MB)