Traffic Trace Info
DumpFile: 200910301400.dump
FileSize: 2473.93MB
Id: 200910301400
StartTime: Fri Oct 30 14:00:01 2009
EndTime: Fri Oct 30 14:15:00 2009
TotalTime: 899.11 seconds
TotalCapSize: 1918.95MB CapLen: 96 bytes
# of packets: 36370357 (22696.09MB)
AvgRate: 211.75Mbps stddev:17.01M
IP flow (unique src/dst pair) Information
# of flows: 1376026 (avg. 26.43 pkts/flow)
Top 10 big flow size (bytes/total in %):
1.8% 1.0% 0.8% 0.8% 0.8% 0.7% 0.7% 0.7% 0.7% 0.6%
IP address Information
# of IPv4 addresses: 810486
Top 10 bandwidth usage (bytes/total in %):
20.8% 5.8% 5.4% 5.2% 4.1% 4.0% 3.3% 3.1% 2.6% 2.5%
# of IPv6 addresses: 897
Top 10 bandwidth usage (bytes/total in %):
12.2% 10.4% 7.5% 7.2% 6.7% 5.5% 5.5% 5.4% 5.4% 5.2%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](200910301400.pktlen.png)
detailed numbers
[ 32- 63]: 9035493
[ 64- 127]: 8974524
[ 128- 255]: 1714255
[ 256- 511]: 957109
[ 512- 1023]: 1002217
[ 1024- 2047]: 14686759
Protocol Breakdown
![[protocol breakdown chart]](200910301400.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 36370357 (100.00%) 23798572871 (100.00%) 654.34
ip 36340210 ( 99.92%) 23792001203 ( 99.97%) 654.70
tcp 27816515 ( 76.48%) 20109268279 ( 84.50%) 722.93
http(s) 9577493 ( 26.33%) 12345595617 ( 51.88%) 1289.02
http(c) 7661940 ( 21.07%) 1661194084 ( 6.98%) 216.81
squid 981072 ( 2.70%) 363589517 ( 1.53%) 370.60
smtp 315477 ( 0.87%) 128240474 ( 0.54%) 406.50
nntp 6 ( 0.00%) 372 ( 0.00%) 62.00
ftp 76648 ( 0.21%) 18628777 ( 0.08%) 243.04
pop3 27698 ( 0.08%) 14087605 ( 0.06%) 508.61
imap 8171 ( 0.02%) 2374263 ( 0.01%) 290.57
telnet 2851 ( 0.01%) 365361 ( 0.00%) 128.15
ssh 747006 ( 2.05%) 361577853 ( 1.52%) 484.04
dns 1473 ( 0.00%) 139670 ( 0.00%) 94.82
bgp 143 ( 0.00%) 47694 ( 0.00%) 333.52
napster 2415 ( 0.01%) 1985507 ( 0.01%) 822.16
realaud 727 ( 0.00%) 73427 ( 0.00%) 101.00
rtsp 396017 ( 1.09%) 59467396 ( 0.25%) 150.16
icecast 19963 ( 0.05%) 10249846 ( 0.04%) 513.44
other 7995541 ( 21.98%) 5141538376 ( 21.60%) 643.05
udp 7580961 ( 20.84%) 3591558993 ( 15.09%) 473.76
dns 1155201 ( 3.18%) 202542088 ( 0.85%) 175.33
rip 1 ( 0.00%) 104 ( 0.00%) 104.00
realaud 292 ( 0.00%) 33840 ( 0.00%) 115.89
halflif 107 ( 0.00%) 16181 ( 0.00%) 151.22
starcra 314 ( 0.00%) 59877 ( 0.00%) 190.69
everque 754 ( 0.00%) 204492 ( 0.00%) 271.21
unreal 99 ( 0.00%) 17404 ( 0.00%) 175.80
quake 39 ( 0.00%) 6255 ( 0.00%) 160.38
cuseeme 25 ( 0.00%) 4410 ( 0.00%) 176.40
other 6423310 ( 17.66%) 3388437547 ( 14.24%) 527.52
icmp 771628 ( 2.12%) 62093284 ( 0.26%) 80.47
ipip 350 ( 0.00%) 43072 ( 0.00%) 123.06
ipsec 2116 ( 0.01%) 280512 ( 0.00%) 132.57
ip6 33186 ( 0.09%) 6978105 ( 0.03%) 210.27
other 135454 ( 0.37%) 21778958 ( 0.09%) 160.78
frag 11019 ( 0.03%) 9369098 ( 0.04%) 850.27
ip6 30145 ( 0.08%) 6571548 ( 0.03%) 218.00
tcp6 14158 ( 0.04%) 3299784 ( 0.01%) 233.07
http(s) 1453 ( 0.00%) 1452050 ( 0.01%) 999.35
http(c) 3240 ( 0.01%) 294076 ( 0.00%) 90.76
smtp 1550 ( 0.00%) 803670 ( 0.00%) 518.50
ftp 2397 ( 0.01%) 249061 ( 0.00%) 103.91
ssh 1 ( 0.00%) 74 ( 0.00%) 74.00
dns 27 ( 0.00%) 7475 ( 0.00%) 276.85
bgp 112 ( 0.00%) 13922 ( 0.00%) 124.30
other 5378 ( 0.01%) 479456 ( 0.00%) 89.15
udp6 11777 ( 0.03%) 2765978 ( 0.01%) 234.86
dns 11766 ( 0.03%) 2764768 ( 0.01%) 234.98
other 11 ( 0.00%) 1210 ( 0.00%) 110.00
icmp6 4168 ( 0.01%) 489672 ( 0.00%) 117.48
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
other6 12 ( 0.00%) 12034 ( 0.00%) 1002.83
tcpdump file: 200910301400.dump.gz (933.85 MB)