Traffic Trace Info
DumpFile: 200911061400.dump
FileSize: 2488.44MB
Id: 200911061400
StartTime: Fri Nov 6 14:00:01 2009
EndTime: Fri Nov 6 14:15:01 2009
TotalTime: 899.83 seconds
TotalCapSize: 1929.03MB CapLen: 96 bytes
# of packets: 36661015 (20628.90MB)
AvgRate: 192.31Mbps stddev:13.76M
IP flow (unique src/dst pair) Information
# of flows: 1612747 (avg. 22.73 pkts/flow)
Top 10 big flow size (bytes/total in %):
1.6% 1.1% 1.0% 1.0% 0.9% 0.9% 0.7% 0.7% 0.6% 0.6%
IP address Information
# of IPv4 addresses: 960389
Top 10 bandwidth usage (bytes/total in %):
25.9% 6.8% 5.1% 4.8% 3.3% 2.4% 2.3% 1.9% 1.8% 1.7%
# of IPv6 addresses: 982
Top 10 bandwidth usage (bytes/total in %):
34.9% 17.9% 17.2% 8.8% 7.7% 7.6% 7.5% 3.3% 3.1% 2.9%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](200911061400.pktlen.png)
detailed numbers
[ 32- 63]: 9164636
[ 64- 127]: 10115569
[ 128- 255]: 1791270
[ 256- 511]: 1049860
[ 512- 1023]: 1443122
[ 1024- 2047]: 13096558
Protocol Breakdown
![[protocol breakdown chart]](200911061400.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 36661015 (100.00%) 21630972827 (100.00%) 590.03
ip 36590028 ( 99.81%) 21619400290 ( 99.95%) 590.85
tcp 26574693 ( 72.49%) 16936477345 ( 78.30%) 637.32
http(s) 7790846 ( 21.25%) 9715651002 ( 44.92%) 1247.06
http(c) 8160309 ( 22.26%) 1080216721 ( 4.99%) 132.37
squid 778461 ( 2.12%) 304888403 ( 1.41%) 391.66
smtp 393032 ( 1.07%) 98184175 ( 0.45%) 249.81
nntp 141670 ( 0.39%) 8567412 ( 0.04%) 60.47
ftp 27490 ( 0.07%) 2782201 ( 0.01%) 101.21
pop3 30808 ( 0.08%) 6023590 ( 0.03%) 195.52
imap 5225 ( 0.01%) 579322 ( 0.00%) 110.88
telnet 1022 ( 0.00%) 126012 ( 0.00%) 123.30
ssh 224253 ( 0.61%) 98328917 ( 0.45%) 438.47
dns 1443 ( 0.00%) 144779 ( 0.00%) 100.33
bgp 158 ( 0.00%) 58782 ( 0.00%) 372.04
napster 34929 ( 0.10%) 8207444 ( 0.04%) 234.98
realaud 887 ( 0.00%) 105396 ( 0.00%) 118.82
rtsp 333184 ( 0.91%) 35339509 ( 0.16%) 106.07
icecast 26831 ( 0.07%) 17293896 ( 0.08%) 644.55
hotline 30 ( 0.00%) 2604 ( 0.00%) 86.80
other 8622856 ( 23.52%) 5559775250 ( 25.70%) 644.77
udp 9122131 ( 24.88%) 4561824287 ( 21.09%) 500.08
dns 1233155 ( 3.36%) 212927311 ( 0.98%) 172.67
realaud 2971 ( 0.01%) 203196 ( 0.00%) 68.39
halflif 118 ( 0.00%) 20054 ( 0.00%) 169.95
starcra 603 ( 0.00%) 123479 ( 0.00%) 204.77
everque 1269 ( 0.00%) 457909 ( 0.00%) 360.84
unreal 102 ( 0.00%) 18714 ( 0.00%) 183.47
quake 59 ( 0.00%) 10244 ( 0.00%) 173.63
cuseeme 16 ( 0.00%) 1768 ( 0.00%) 110.50
other 7881720 ( 21.50%) 4347782652 ( 20.10%) 551.63
icmp 807499 ( 2.20%) 99768855 ( 0.46%) 123.55
ipip 338 ( 0.00%) 41384 ( 0.00%) 122.44
ip6 54923 ( 0.15%) 16506671 ( 0.08%) 300.54
other 30444 ( 0.08%) 4781748 ( 0.02%) 157.07
frag 22821 ( 0.06%) 18240942 ( 0.08%) 799.31
ip6 70987 ( 0.19%) 11572537 ( 0.05%) 163.02
tcp6 52763 ( 0.14%) 7852389 ( 0.04%) 148.82
http(s) 1648 ( 0.00%) 2339181 ( 0.01%) 1419.41
http(c) 3297 ( 0.01%) 306435 ( 0.00%) 92.94
smtp 1812 ( 0.00%) 972887 ( 0.00%) 536.91
ssh 268 ( 0.00%) 86668 ( 0.00%) 323.39
dns 5 ( 0.00%) 1936 ( 0.00%) 387.20
bgp 113 ( 0.00%) 14191 ( 0.00%) 125.58
other 45620 ( 0.12%) 4131091 ( 0.02%) 90.55
udp6 13560 ( 0.04%) 3157050 ( 0.01%) 232.82
dns 13520 ( 0.04%) 3147856 ( 0.01%) 232.83
everque 1 ( 0.00%) 108 ( 0.00%) 108.00
other 39 ( 0.00%) 9086 ( 0.00%) 232.97
icmp6 4604 ( 0.01%) 531219 ( 0.00%) 115.38
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
other6 30 ( 0.00%) 27799 ( 0.00%) 926.63
tcpdump file: 200911061400.dump.gz (931.63 MB)