Traffic Trace Info
DumpFile: 200910191400.dump
FileSize: 2568.18MB
Id: 200910191400
StartTime: Mon Oct 19 14:00:01 2009
EndTime: Mon Oct 19 14:15:01 2009
TotalTime: 899.60 seconds
TotalCapSize: 1999.80MB CapLen: 96 bytes
# of packets: 37249134 (22355.49MB)
AvgRate: 208.47Mbps stddev:18.68M
IP flow (unique src/dst pair) Information
# of flows: 1561060 (avg. 23.86 pkts/flow)
Top 10 big flow size (bytes/total in %):
6.5% 1.0% 1.0% 0.8% 0.7% 0.7% 0.7% 0.7% 0.7% 0.7%
IP address Information
# of IPv4 addresses: 902007
Top 10 bandwidth usage (bytes/total in %):
17.9% 9.0% 7.5% 6.6% 5.8% 4.5% 2.3% 1.6% 1.6% 1.5%
# of IPv6 addresses: 864
Top 10 bandwidth usage (bytes/total in %):
35.4% 35.3% 9.6% 6.4% 6.4% 4.6% 3.0% 2.9% 2.9% 2.7%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](200910191400.pktlen.png)
detailed numbers
[ 32- 63]: 9454534
[ 64- 127]: 9759264
[ 128- 255]: 1575039
[ 256- 511]: 1044799
[ 512- 1023]: 1111979
[ 1024- 2047]: 14303519
Protocol Breakdown
![[protocol breakdown chart]](200910191400.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 37249134 (100.00%) 23441425148 (100.00%) 629.31
ip 37198584 ( 99.86%) 23433565064 ( 99.97%) 629.96
tcp 29590510 ( 79.44%) 20706664500 ( 88.33%) 699.77
http(s) 10094470 ( 27.10%) 12299460654 ( 52.47%) 1218.44
http(c) 9239005 ( 24.80%) 2902111611 ( 12.38%) 314.12
squid 721092 ( 1.94%) 226666649 ( 0.97%) 314.34
smtp 353390 ( 0.95%) 178893209 ( 0.76%) 506.22
nntp 8 ( 0.00%) 574 ( 0.00%) 71.75
ftp 68734 ( 0.18%) 71231932 ( 0.30%) 1036.34
pop3 18795 ( 0.05%) 5490165 ( 0.02%) 292.11
imap 6435 ( 0.02%) 985798 ( 0.00%) 153.19
telnet 9085 ( 0.02%) 727357 ( 0.00%) 80.06
ssh 318887 ( 0.86%) 63908079 ( 0.27%) 200.41
dns 72229 ( 0.19%) 10933541 ( 0.05%) 151.37
bgp 140 ( 0.00%) 49368 ( 0.00%) 352.63
napster 1687 ( 0.00%) 115942 ( 0.00%) 68.73
realaud 2335 ( 0.01%) 228304 ( 0.00%) 97.77
rtsp 154285 ( 0.41%) 45208434 ( 0.19%) 293.02
icecast 29767 ( 0.08%) 19562558 ( 0.08%) 657.19
hotline 19 ( 0.00%) 2168 ( 0.00%) 114.11
other 8499809 ( 22.82%) 4881067877 ( 20.82%) 574.26
udp 6973180 ( 18.72%) 2662739201 ( 11.36%) 381.85
dns 1246202 ( 3.35%) 221053293 ( 0.94%) 177.38
rip 2 ( 0.00%) 199 ( 0.00%) 99.50
realaud 12462 ( 0.03%) 2667071 ( 0.01%) 214.02
halflif 559 ( 0.00%) 42526 ( 0.00%) 76.08
starcra 394 ( 0.00%) 78511 ( 0.00%) 199.27
everque 676 ( 0.00%) 194006 ( 0.00%) 286.99
unreal 119 ( 0.00%) 20785 ( 0.00%) 174.66
quake 67 ( 0.00%) 9884 ( 0.00%) 147.52
cuseeme 397 ( 0.00%) 215216 ( 0.00%) 542.11
other 5711601 ( 15.33%) 2438291947 ( 10.40%) 426.90
icmp 595218 ( 1.60%) 52196691 ( 0.22%) 87.69
ipip 342 ( 0.00%) 40660 ( 0.00%) 118.89
ipsec 77 ( 0.00%) 12102 ( 0.00%) 157.17
ip6 30745 ( 0.08%) 9206888 ( 0.04%) 299.46
other 8512 ( 0.02%) 2705022 ( 0.01%) 317.79
frag 4678 ( 0.01%) 3931748 ( 0.02%) 840.48
ip6 50550 ( 0.14%) 7860084 ( 0.03%) 155.49
tcp6 35560 ( 0.10%) 4759325 ( 0.02%) 133.84
http(s) 633 ( 0.00%) 824432 ( 0.00%) 1302.42
http(c) 1639 ( 0.00%) 152216 ( 0.00%) 92.87
smtp 1454 ( 0.00%) 771177 ( 0.00%) 530.38
ssh 1 ( 0.00%) 74 ( 0.00%) 74.00
dns 10 ( 0.00%) 2682 ( 0.00%) 268.20
bgp 107 ( 0.00%) 13395 ( 0.00%) 125.19
other 31716 ( 0.09%) 2995349 ( 0.01%) 94.44
udp6 11758 ( 0.03%) 2651031 ( 0.01%) 225.47
dns 11752 ( 0.03%) 2650371 ( 0.01%) 225.53
other 6 ( 0.00%) 660 ( 0.00%) 110.00
icmp6 3192 ( 0.01%) 436419 ( 0.00%) 136.72
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
other6 10 ( 0.00%) 9229 ( 0.00%) 922.90
tcpdump file: 200910191400.dump.gz (962.09 MB)