Traffic Trace Info
DumpFile: 200910201400.dump
FileSize: 2447.50MB
Id: 200910201400
StartTime: Tue Oct 20 14:00:01 2009
EndTime: Tue Oct 20 14:15:01 2009
TotalTime: 899.80 seconds
TotalCapSize: 1898.51MB CapLen: 96 bytes
# of packets: 35957705 (20910.66MB)
AvgRate: 194.96Mbps stddev:17.13M
IP flow (unique src/dst pair) Information
# of flows: 1393923 (avg. 25.80 pkts/flow)
Top 10 big flow size (bytes/total in %):
1.9% 1.1% 1.0% 0.9% 0.8% 0.7% 0.7% 0.7% 0.7% 0.7%
IP address Information
# of IPv4 addresses: 810614
Top 10 bandwidth usage (bytes/total in %):
21.7% 7.4% 6.6% 3.4% 3.3% 3.2% 2.5% 2.2% 2.1% 1.9%
# of IPv6 addresses: 982
Top 10 bandwidth usage (bytes/total in %):
72.3% 54.6% 17.6% 5.5% 4.4% 3.2% 2.2% 1.9% 1.5% 1.2%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](200910201400.pktlen.png)
detailed numbers
[ 32- 63]: 8852206
[ 64- 127]: 9343840
[ 128- 255]: 2058806
[ 256- 511]: 1234582
[ 512- 1023]: 1100806
[ 1024- 2047]: 13367465
Protocol Breakdown
![[protocol breakdown chart]](200910201400.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 35957705 (100.00%) 21926416727 (100.00%) 609.78
ip 35828919 ( 99.64%) 21890701928 ( 99.84%) 610.98
tcp 26647006 ( 74.11%) 18314675385 ( 83.53%) 687.31
http(s) 8838573 ( 24.58%) 11339297580 ( 51.72%) 1282.93
http(c) 8086208 ( 22.49%) 1506016972 ( 6.87%) 186.25
squid 780560 ( 2.17%) 293055998 ( 1.34%) 375.44
smtp 412585 ( 1.15%) 122631396 ( 0.56%) 297.23
nntp 3149 ( 0.01%) 191716 ( 0.00%) 60.88
ftp 50099 ( 0.14%) 48550617 ( 0.22%) 969.09
pop3 23059 ( 0.06%) 5647964 ( 0.03%) 244.94
imap 12215 ( 0.03%) 1932244 ( 0.01%) 158.19
telnet 12895 ( 0.04%) 1092056 ( 0.00%) 84.69
ssh 164301 ( 0.46%) 123224459 ( 0.56%) 749.99
dns 55114 ( 0.15%) 9906572 ( 0.05%) 179.75
bgp 221 ( 0.00%) 58764 ( 0.00%) 265.90
napster 540 ( 0.00%) 207225 ( 0.00%) 383.75
realaud 5040 ( 0.01%) 355253 ( 0.00%) 70.49
rtsp 112717 ( 0.31%) 60603607 ( 0.28%) 537.66
icecast 141367 ( 0.39%) 109522018 ( 0.50%) 774.74
hotline 6 ( 0.00%) 1010 ( 0.00%) 168.33
other 7947797 ( 22.10%) 4692346334 ( 21.40%) 590.40
udp 8523341 ( 23.70%) 3505246460 ( 15.99%) 411.25
dns 1345047 ( 3.74%) 230160533 ( 1.05%) 171.12
rip 4 ( 0.00%) 791 ( 0.00%) 197.75
realaud 12461 ( 0.03%) 2662518 ( 0.01%) 213.67
halflif 104 ( 0.00%) 14973 ( 0.00%) 143.97
starcra 362 ( 0.00%) 77487 ( 0.00%) 214.05
everque 1356 ( 0.00%) 294681 ( 0.00%) 217.32
unreal 68 ( 0.00%) 15063 ( 0.00%) 221.51
quake 124 ( 0.00%) 13687 ( 0.00%) 110.38
cuseeme 12 ( 0.00%) 1721 ( 0.00%) 143.42
other 7156123 ( 19.90%) 3271018306 ( 14.92%) 457.09
icmp 598895 ( 1.67%) 53091973 ( 0.24%) 88.65
ipip 321 ( 0.00%) 37532 ( 0.00%) 116.92
ipsec 66 ( 0.00%) 10428 ( 0.00%) 158.00
ip6 25704 ( 0.07%) 4293665 ( 0.02%) 167.04
other 33586 ( 0.09%) 13346485 ( 0.06%) 397.38
frag 42166 ( 0.12%) 32964783 ( 0.15%) 781.79
ip6 128786 ( 0.36%) 35714799 ( 0.16%) 277.32
tcp6 104163 ( 0.29%) 31078097 ( 0.14%) 298.36
http(s) 991 ( 0.00%) 1058795 ( 0.00%) 1068.41
http(c) 1871 ( 0.01%) 201719 ( 0.00%) 107.81
squid 12 ( 0.00%) 1016 ( 0.00%) 84.67
smtp 1650 ( 0.00%) 800318 ( 0.00%) 485.04
pop3 197 ( 0.00%) 14653 ( 0.00%) 74.38
ssh 3020 ( 0.01%) 2008262 ( 0.01%) 664.99
dns 20 ( 0.00%) 8478 ( 0.00%) 423.90
bgp 104 ( 0.00%) 12793 ( 0.00%) 123.01
other 96298 ( 0.27%) 26972063 ( 0.12%) 280.09
udp6 16352 ( 0.05%) 3480941 ( 0.02%) 212.88
dns 16206 ( 0.05%) 3445505 ( 0.02%) 212.61
other 146 ( 0.00%) 35436 ( 0.00%) 242.71
icmp6 8175 ( 0.02%) 1087045 ( 0.00%) 132.97
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
other6 66 ( 0.00%) 64636 ( 0.00%) 979.33
tcpdump file: 200910201400.dump.gz (914.60 MB)