Traffic Trace Info
DumpFile: 200911121400.dump
FileSize: 3627.22MB
Id: 200911121400
StartTime: Thu Nov 12 14:00:01 2009
EndTime: Thu Nov 12 14:15:01 2009
TotalTime: 899.26 seconds
TotalCapSize: -1324.26MB CapLen: 96 bytes
# of packets: 56064532 (27302.95MB)
AvgRate: 254.69Mbps stddev:17.66M
IP flow (unique src/dst pair) Information
# of flows: 1425087 (avg. 39.34 pkts/flow)
Top 10 big flow size (bytes/total in %):
7.8% 3.2% 1.5% 1.4% 1.3% 1.0% 0.9% 0.8% 0.8% 0.8%
IP address Information
# of IPv4 addresses: 870869
Top 10 bandwidth usage (bytes/total in %):
17.3% 12.4% 8.6% 7.8% 4.4% 4.2% 3.4% 3.3% 3.2% 3.1%
# of IPv6 addresses: 1342
Top 10 bandwidth usage (bytes/total in %):
63.3% 63.3% 18.2% 14.0% 3.7% 2.6% 2.5% 2.4% 1.6% 1.2%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](200911121400.pktlen.png)
detailed numbers
[ 32- 63]: 23911623
[ 64- 127]: 10166953
[ 128- 255]: 1984446
[ 256- 511]: 1062640
[ 512- 1023]: 1974858
[ 1024- 2047]: 16964012
Protocol Breakdown
![[protocol breakdown chart]](200911121400.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 56064532 (100.00%) 28629220162 (100.00%) 510.65
ip 56016105 ( 99.91%) 28588615370 ( 99.86%) 510.36
tcp 30787818 ( 54.91%) 22057606766 ( 77.05%) 716.44
http(s) 9900940 ( 17.66%) 12683596008 ( 44.30%) 1281.05
http(c) 7879699 ( 14.05%) 1296977719 ( 4.53%) 164.60
squid 622850 ( 1.11%) 126296652 ( 0.44%) 202.77
smtp 297655 ( 0.53%) 128633784 ( 0.45%) 432.16
nntp 95 ( 0.00%) 18398 ( 0.00%) 193.66
ftp 141662 ( 0.25%) 44324360 ( 0.15%) 312.89
pop3 27140 ( 0.05%) 6878774 ( 0.02%) 253.46
imap 6406 ( 0.01%) 608856 ( 0.00%) 95.04
telnet 1211 ( 0.00%) 126461 ( 0.00%) 104.43
ssh 1034422 ( 1.85%) 163457179 ( 0.57%) 158.02
dns 172101 ( 0.31%) 145003321 ( 0.51%) 842.55
bgp 155 ( 0.00%) 55060 ( 0.00%) 355.23
napster 1152 ( 0.00%) 611498 ( 0.00%) 530.81
realaud 2105 ( 0.00%) 155516 ( 0.00%) 73.88
rtsp 204048 ( 0.36%) 127038297 ( 0.44%) 622.59
icecast 27514 ( 0.05%) 16508313 ( 0.06%) 600.00
hotline 14 ( 0.00%) 2284 ( 0.00%) 163.14
other 10468431 ( 18.67%) 7317301206 ( 25.56%) 698.99
udp 24322829 ( 43.38%) 6416666837 ( 22.41%) 263.81
dns 1165149 ( 2.08%) 209034330 ( 0.73%) 179.41
realaud 1952 ( 0.00%) 127670 ( 0.00%) 65.40
halflif 174 ( 0.00%) 22704 ( 0.00%) 130.48
starcra 495 ( 0.00%) 81326 ( 0.00%) 164.29
everque 891 ( 0.00%) 424717 ( 0.00%) 476.67
unreal 1115 ( 0.00%) 781270 ( 0.00%) 700.69
quake 98 ( 0.00%) 15312 ( 0.00%) 156.24
cuseeme 15 ( 0.00%) 2074 ( 0.00%) 138.27
other 23140939 ( 41.28%) 6204665808 ( 21.67%) 268.13
icmp 832324 ( 1.48%) 103438742 ( 0.36%) 124.28
ipip 379 ( 0.00%) 46978 ( 0.00%) 123.95
ipsec 98 ( 0.00%) 15484 ( 0.00%) 158.00
ip6 45775 ( 0.08%) 7517972 ( 0.03%) 164.24
other 26882 ( 0.05%) 3322591 ( 0.01%) 123.60
frag 2068115 ( 3.69%) 2680223982 ( 9.36%) 1295.97
ip6 48427 ( 0.09%) 40604792 ( 0.14%) 838.47
tcp6 30683 ( 0.05%) 36880640 ( 0.13%) 1201.99
http(s) 23428 ( 0.04%) 34879775 ( 0.12%) 1488.81
http(c) 3334 ( 0.01%) 322369 ( 0.00%) 96.69
smtp 3201 ( 0.01%) 1593633 ( 0.01%) 497.85
ssh 8 ( 0.00%) 1040 ( 0.00%) 130.00
bgp 127 ( 0.00%) 17105 ( 0.00%) 134.69
other 585 ( 0.00%) 66718 ( 0.00%) 114.05
udp6 13185 ( 0.02%) 2877026 ( 0.01%) 218.20
dns 12339 ( 0.02%) 2730032 ( 0.01%) 221.25
other 846 ( 0.00%) 146994 ( 0.00%) 173.75
icmp6 4139 ( 0.01%) 493354 ( 0.00%) 119.20
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
other6 390 ( 0.00%) 349692 ( 0.00%) 896.65
tcpdump file: 200911121400.dump.gz (1237.31 MB)