Traffic Trace Info
DumpFile: 200911101400.dump
FileSize: 2493.85MB
Id: 200911101400
StartTime: Tue Nov 10 14:00:01 2009
EndTime: Tue Nov 10 14:15:01 2009
TotalTime: 899.37 seconds
TotalCapSize: 1934.02MB CapLen: 96 bytes
# of packets: 36677633 (23133.74MB)
AvgRate: 215.75Mbps stddev:18.97M
IP flow (unique src/dst pair) Information
# of flows: 1520078 (avg. 24.13 pkts/flow)
Top 10 big flow size (bytes/total in %):
1.8% 1.8% 1.8% 1.6% 1.5% 1.3% 1.2% 1.1% 0.9% 0.9%
IP address Information
# of IPv4 addresses: 931219
Top 10 bandwidth usage (bytes/total in %):
13.8% 7.8% 6.2% 5.2% 4.8% 3.7% 3.4% 3.1% 2.3% 2.2%
# of IPv6 addresses: 1208
Top 10 bandwidth usage (bytes/total in %):
11.8% 11.5% 11.5% 11.4% 8.5% 6.4% 6.3% 5.0% 4.9% 4.0%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](200911101400.pktlen.png)
detailed numbers
[ 32- 63]: 8666507
[ 64- 127]: 8913989
[ 128- 255]: 1692336
[ 256- 511]: 981224
[ 512- 1023]: 1390465
[ 1024- 2047]: 15033112
Protocol Breakdown
![[protocol breakdown chart]](200911101400.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 36677633 (100.00%) 24257484235 (100.00%) 661.37
ip 36644614 ( 99.91%) 24250282992 ( 99.97%) 661.77
tcp 27356406 ( 74.59%) 19185577349 ( 79.09%) 701.32
http(s) 8932767 ( 24.35%) 11372031194 ( 46.88%) 1273.07
http(c) 6579543 ( 17.94%) 847351745 ( 3.49%) 128.79
squid 694776 ( 1.89%) 246333825 ( 1.02%) 354.55
smtp 333427 ( 0.91%) 152048305 ( 0.63%) 456.02
ftp 56987 ( 0.16%) 26507438 ( 0.11%) 465.15
pop3 21983 ( 0.06%) 5365627 ( 0.02%) 244.08
imap 6614 ( 0.02%) 677314 ( 0.00%) 102.41
telnet 589 ( 0.00%) 77406 ( 0.00%) 131.42
ssh 162781 ( 0.44%) 43666045 ( 0.18%) 268.25
dns 6816 ( 0.02%) 4120159 ( 0.02%) 604.48
bgp 167 ( 0.00%) 66005 ( 0.00%) 395.24
napster 379 ( 0.00%) 130522 ( 0.00%) 344.39
realaud 948 ( 0.00%) 105220 ( 0.00%) 110.99
rtsp 340664 ( 0.93%) 159077573 ( 0.66%) 466.96
icecast 16896 ( 0.05%) 4337585 ( 0.02%) 256.72
hotline 3 ( 0.00%) 186 ( 0.00%) 62.00
other 10201049 ( 27.81%) 6323680180 ( 26.07%) 619.90
udp 8510277 ( 23.20%) 4965984063 ( 20.47%) 583.53
dns 1190040 ( 3.24%) 218753297 ( 0.90%) 183.82
rip 1 ( 0.00%) 104 ( 0.00%) 104.00
realaud 111 ( 0.00%) 17058 ( 0.00%) 153.68
halflif 299 ( 0.00%) 29241 ( 0.00%) 97.80
starcra 85384 ( 0.23%) 127794985 ( 0.53%) 1496.71
everque 671 ( 0.00%) 96214 ( 0.00%) 143.39
unreal 103 ( 0.00%) 19793 ( 0.00%) 192.17
quake 74 ( 0.00%) 9151 ( 0.00%) 123.66
cuseeme 16 ( 0.00%) 2304 ( 0.00%) 144.00
other 7230540 ( 19.71%) 4618734537 ( 19.04%) 638.78
icmp 736101 ( 2.01%) 91937837 ( 0.38%) 124.90
ipip 331 ( 0.00%) 39974 ( 0.00%) 120.77
ipsec 35 ( 0.00%) 5530 ( 0.00%) 158.00
ip6 40643 ( 0.11%) 6642873 ( 0.03%) 163.44
other 821 ( 0.00%) 95366 ( 0.00%) 116.16
frag 18705 ( 0.05%) 15503194 ( 0.06%) 828.83
ip6 33019 ( 0.09%) 7201243 ( 0.03%) 218.09
tcp6 15864 ( 0.04%) 3817206 ( 0.02%) 240.62
http(s) 880 ( 0.00%) 979910 ( 0.00%) 1113.53
http(c) 2965 ( 0.01%) 267989 ( 0.00%) 90.38
squid 3 ( 0.00%) 254 ( 0.00%) 84.67
smtp 1652 ( 0.00%) 802574 ( 0.00%) 485.82
ssh 1919 ( 0.01%) 833558 ( 0.00%) 434.37
dns 24 ( 0.00%) 2826 ( 0.00%) 117.75
bgp 114 ( 0.00%) 14815 ( 0.00%) 129.96
other 8307 ( 0.02%) 915280 ( 0.00%) 110.18
udp6 12616 ( 0.03%) 2835712 ( 0.01%) 224.77
dns 11320 ( 0.03%) 2534917 ( 0.01%) 223.93
other 1296 ( 0.00%) 300795 ( 0.00%) 232.09
icmp6 4495 ( 0.01%) 532077 ( 0.00%) 118.37
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
other6 14 ( 0.00%) 12168 ( 0.00%) 869.14
tcpdump file: 200911101400.dump.gz (905.12 MB)