Traffic Trace Info
DumpFile: 200910221400.dump
FileSize: 2502.18MB
Id: 200910221400
StartTime: Thu Oct 22 14:00:00 2009
EndTime: Thu Oct 22 14:15:01 2009
TotalTime: 900.29 seconds
TotalCapSize: 1945.32MB CapLen: 96 bytes
# of packets: 36493586 (21823.53MB)
AvgRate: 203.34Mbps stddev:33.45M
IP flow (unique src/dst pair) Information
# of flows: 1345880 (avg. 27.12 pkts/flow)
Top 10 big flow size (bytes/total in %):
2.6% 1.4% 1.2% 1.0% 1.0% 0.9% 0.9% 0.9% 0.8% 0.8%
IP address Information
# of IPv4 addresses: 789220
Top 10 bandwidth usage (bytes/total in %):
22.1% 8.4% 5.7% 5.3% 4.3% 4.0% 3.3% 2.6% 2.6% 1.6%
# of IPv6 addresses: 976
Top 10 bandwidth usage (bytes/total in %):
13.2% 10.4% 10.4% 6.9% 6.5% 6.5% 6.2% 4.7% 4.3% 4.0%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](200910221400.pktlen.png)
detailed numbers
[ 32- 63]: 8942053
[ 64- 127]: 9714284
[ 128- 255]: 1745691
[ 256- 511]: 998960
[ 512- 1023]: 1096224
[ 1024- 2047]: 13996374
Protocol Breakdown
![[protocol breakdown chart]](200910221400.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 36493586 (100.00%) 22883628233 (100.00%) 627.06
ip 36467482 ( 99.93%) 22877364515 ( 99.97%) 627.34
tcp 27933418 ( 76.54%) 19500214132 ( 85.21%) 698.10
http(s) 10066262 ( 27.58%) 13042057371 ( 56.99%) 1295.62
http(c) 8245806 ( 22.60%) 1068524017 ( 4.67%) 129.58
squid 699774 ( 1.92%) 256579681 ( 1.12%) 366.66
smtp 290444 ( 0.80%) 82499291 ( 0.36%) 284.05
nntp 26 ( 0.00%) 1806 ( 0.00%) 69.46
ftp 38249 ( 0.10%) 9567350 ( 0.04%) 250.13
pop3 16154 ( 0.04%) 6177691 ( 0.03%) 382.42
imap 5703 ( 0.02%) 831452 ( 0.00%) 145.79
telnet 15828 ( 0.04%) 1184159 ( 0.01%) 74.81
ssh 145898 ( 0.40%) 33541748 ( 0.15%) 229.90
dns 10865 ( 0.03%) 7270702 ( 0.03%) 669.19
bgp 203 ( 0.00%) 70888 ( 0.00%) 349.20
napster 366 ( 0.00%) 33620 ( 0.00%) 91.86
realaud 790 ( 0.00%) 89902 ( 0.00%) 113.80
rtsp 371421 ( 1.02%) 165046299 ( 0.72%) 444.36
icecast 13409 ( 0.04%) 3957847 ( 0.02%) 295.16
hotline 60 ( 0.00%) 4031 ( 0.00%) 67.18
other 8011700 ( 21.95%) 4822748435 ( 21.08%) 601.96
udp 7911272 ( 21.68%) 3300251521 ( 14.42%) 417.16
dns 1409179 ( 3.86%) 240386697 ( 1.05%) 170.59
realaud 134 ( 0.00%) 18543 ( 0.00%) 138.38
halflif 426 ( 0.00%) 29768 ( 0.00%) 69.88
starcra 298 ( 0.00%) 57748 ( 0.00%) 193.79
everque 26918 ( 0.07%) 20601952 ( 0.09%) 765.36
unreal 101 ( 0.00%) 19030 ( 0.00%) 188.42
quake 68 ( 0.00%) 10190 ( 0.00%) 149.85
cuseeme 127 ( 0.00%) 41057 ( 0.00%) 323.28
other 6093184 ( 16.70%) 3015596666 ( 13.18%) 494.91
icmp 577925 ( 1.58%) 51286747 ( 0.22%) 88.74
ipip 308 ( 0.00%) 36360 ( 0.00%) 118.05
ipsec 64 ( 0.00%) 10112 ( 0.00%) 158.00
ip6 43400 ( 0.12%) 25337207 ( 0.11%) 583.81
other 1095 ( 0.00%) 228436 ( 0.00%) 208.62
frag 773395 ( 2.12%) 610334185 ( 2.67%) 789.16
ip6 26104 ( 0.07%) 6263718 ( 0.03%) 239.95
tcp6 8824 ( 0.02%) 2877961 ( 0.01%) 326.15
http(s) 814 ( 0.00%) 986047 ( 0.00%) 1211.36
http(c) 1550 ( 0.00%) 142113 ( 0.00%) 91.69
smtp 1750 ( 0.00%) 884425 ( 0.00%) 505.39
ssh 1623 ( 0.00%) 503242 ( 0.00%) 310.07
dns 10 ( 0.00%) 1786 ( 0.00%) 178.60
bgp 106 ( 0.00%) 13706 ( 0.00%) 129.30
other 2971 ( 0.01%) 346642 ( 0.00%) 116.68
udp6 12312 ( 0.03%) 2769302 ( 0.01%) 224.93
dns 12299 ( 0.03%) 2767552 ( 0.01%) 225.02
other 13 ( 0.00%) 1750 ( 0.00%) 134.62
icmp6 4909 ( 0.01%) 588835 ( 0.00%) 119.95
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
other6 29 ( 0.00%) 23540 ( 0.00%) 811.72
tcpdump file: 200910221400.dump.gz (919.58 MB)