Traffic Trace Info
DumpFile: 200911111400.dump
FileSize: 2884.60MB
Id: 200911111400
StartTime: Wed Nov 11 14:00:00 2009
EndTime: Wed Nov 11 14:15:00 2009
TotalTime: 900.14 seconds
TotalCapSize: -1884.10MB CapLen: 96 bytes
# of packets: 44085374 (19392.22MB)
AvgRate: 180.73Mbps stddev:17.29M
IP flow (unique src/dst pair) Information
# of flows: 1567012 (avg. 28.13 pkts/flow)
Top 10 big flow size (bytes/total in %):
2.7% 1.2% 1.1% 1.1% 1.1% 1.1% 1.1% 0.9% 0.7% 0.7%
IP address Information
# of IPv4 addresses: 955518
Top 10 bandwidth usage (bytes/total in %):
23.5% 8.3% 5.4% 5.0% 4.0% 2.7% 2.7% 2.2% 1.9% 1.7%
# of IPv6 addresses: 998
Top 10 bandwidth usage (bytes/total in %):
13.9% 6.9% 6.7% 5.3% 4.9% 4.9% 4.8% 4.7% 4.4% 4.4%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](200911111400.pktlen.png)
detailed numbers
[ 32- 63]: 17884971
[ 64- 127]: 10148453
[ 128- 255]: 1804420
[ 256- 511]: 1056554
[ 512- 1023]: 1363501
[ 1024- 2047]: 11827475
Protocol Breakdown
![[protocol breakdown chart]](200911111400.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 44085374 (100.00%) 20334220674 (100.00%) 461.25
ip 44064130 ( 99.95%) 20329346887 ( 99.98%) 461.36
tcp 25820661 ( 58.57%) 16342220219 ( 80.37%) 632.91
http(s) 8093528 ( 18.36%) 10352191946 ( 50.91%) 1279.07
http(c) 7180006 ( 16.29%) 844601114 ( 4.15%) 117.63
squid 801610 ( 1.82%) 171413791 ( 0.84%) 213.84
smtp 269201 ( 0.61%) 130032476 ( 0.64%) 483.03
ftp 167697 ( 0.38%) 26372607 ( 0.13%) 157.26
pop3 85453 ( 0.19%) 13066368 ( 0.06%) 152.91
imap 8308 ( 0.02%) 2084992 ( 0.01%) 250.96
telnet 1512 ( 0.00%) 124894 ( 0.00%) 82.60
ssh 637925 ( 1.45%) 122737562 ( 0.60%) 192.40
dns 1255 ( 0.00%) 127813 ( 0.00%) 101.84
bgp 146 ( 0.00%) 54280 ( 0.00%) 371.78
napster 803 ( 0.00%) 221813 ( 0.00%) 276.23
realaud 1132 ( 0.00%) 134207 ( 0.00%) 118.56
rtsp 186415 ( 0.42%) 42471375 ( 0.21%) 227.83
icecast 125193 ( 0.28%) 111875502 ( 0.55%) 893.62
hotline 37 ( 0.00%) 3187 ( 0.00%) 86.14
other 8260378 ( 18.74%) 4524702572 ( 22.25%) 547.76
udp 17367653 ( 39.40%) 3878934196 ( 19.08%) 223.34
dns 1102148 ( 2.50%) 198826568 ( 0.98%) 180.40
realaud 199 ( 0.00%) 26680 ( 0.00%) 134.07
halflif 142 ( 0.00%) 20949 ( 0.00%) 147.53
starcra 573 ( 0.00%) 108494 ( 0.00%) 189.34
everque 1984 ( 0.00%) 420614 ( 0.00%) 212.00
unreal 154 ( 0.00%) 29292 ( 0.00%) 190.21
quake 152 ( 0.00%) 25340 ( 0.00%) 166.71
cuseeme 7 ( 0.00%) 1238 ( 0.00%) 176.86
other 16256529 ( 36.88%) 3678705013 ( 18.09%) 226.29
icmp 828954 ( 1.88%) 100670325 ( 0.50%) 121.44
ipip 377 ( 0.00%) 47366 ( 0.00%) 125.64
ipsec 66 ( 0.00%) 10428 ( 0.00%) 158.00
ip6 41113 ( 0.09%) 6560457 ( 0.03%) 159.57
other 5306 ( 0.01%) 903896 ( 0.00%) 170.35
frag 33271 ( 0.08%) 25453516 ( 0.13%) 765.04
ip6 21244 ( 0.05%) 4873787 ( 0.02%) 229.42
tcp6 6495 ( 0.01%) 1924233 ( 0.01%) 296.26
http(s) 441 ( 0.00%) 572826 ( 0.00%) 1298.93
http(c) 3009 ( 0.01%) 273156 ( 0.00%) 90.78
smtp 1781 ( 0.00%) 897177 ( 0.00%) 503.75
ssh 526 ( 0.00%) 74960 ( 0.00%) 142.51
dns 5 ( 0.00%) 675 ( 0.00%) 135.00
bgp 114 ( 0.00%) 14260 ( 0.00%) 125.09
other 619 ( 0.00%) 91179 ( 0.00%) 147.30
udp6 10794 ( 0.02%) 2475603 ( 0.01%) 229.35
dns 10721 ( 0.02%) 2466740 ( 0.01%) 230.08
other 73 ( 0.00%) 8863 ( 0.00%) 121.41
icmp6 3911 ( 0.01%) 456263 ( 0.00%) 116.66
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
other6 14 ( 0.00%) 13608 ( 0.00%) 972.00
tcpdump file: 200911111400.dump.gz (1010.74 MB)