Traffic Trace Info
DumpFile: 200911181400.dump
FileSize: 2812.31MB
Id: 200911181400
StartTime: Wed Nov 18 14:00:01 2009
EndTime: Wed Nov 18 14:15:00 2009
TotalTime: 899.81 seconds
TotalCapSize: -1912.60MB CapLen: 96 bytes
# of packets: 41215037 (25388.19MB)
AvgRate: 236.69Mbps stddev:17.46M
IP flow (unique src/dst pair) Information
# of flows: 1549520 (avg. 26.60 pkts/flow)
Top 10 big flow size (bytes/total in %):
2.9% 1.2% 1.0% 0.9% 0.8% 0.8% 0.8% 0.8% 0.7% 0.5%
IP address Information
# of IPv4 addresses: 955416
Top 10 bandwidth usage (bytes/total in %):
22.6% 6.0% 5.8% 5.3% 3.6% 3.5% 3.4% 3.4% 2.9% 2.8%
# of IPv6 addresses: 1004
Top 10 bandwidth usage (bytes/total in %):
39.6% 39.3% 14.1% 4.8% 4.7% 4.3% 3.9% 3.2% 2.7% 2.5%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](200911181400.pktlen.png)
detailed numbers
[ 32- 63]: 9152977
[ 64- 127]: 11093266
[ 128- 255]: 1925137
[ 256- 511]: 1088109
[ 512- 1023]: 1625459
[ 1024- 2047]: 16330089
Protocol Breakdown
![[protocol breakdown chart]](200911181400.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 41215037 (100.00%) 26621444485 (100.00%) 645.92
ip 41160917 ( 99.87%) 26613637666 ( 99.97%) 646.58
tcp 29854861 ( 72.44%) 21076332967 ( 79.17%) 705.96
http(s) 9886789 ( 23.99%) 12783139816 ( 48.02%) 1292.95
http(c) 7780031 ( 18.88%) 1046597539 ( 3.93%) 134.52
squid 878157 ( 2.13%) 186477636 ( 0.70%) 212.35
smtp 243859 ( 0.59%) 109209956 ( 0.41%) 447.84
ftp 77420 ( 0.19%) 15052961 ( 0.06%) 194.43
pop3 28301 ( 0.07%) 20235177 ( 0.08%) 715.00
imap 2532 ( 0.01%) 723965 ( 0.00%) 285.93
telnet 490 ( 0.00%) 40329 ( 0.00%) 82.30
ssh 94424 ( 0.23%) 22570193 ( 0.08%) 239.03
dns 9087 ( 0.02%) 5225475 ( 0.02%) 575.05
bgp 352 ( 0.00%) 221083 ( 0.00%) 628.08
napster 624 ( 0.00%) 375074 ( 0.00%) 601.08
realaud 1166 ( 0.00%) 147315 ( 0.00%) 126.34
rtsp 206387 ( 0.50%) 29428647 ( 0.11%) 142.59
icecast 19997 ( 0.05%) 10642761 ( 0.04%) 532.22
hotline 5 ( 0.00%) 851 ( 0.00%) 170.20
other 10622185 ( 25.77%) 6846060889 ( 25.72%) 644.51
udp 10427904 ( 25.30%) 5424266720 ( 20.38%) 520.17
dns 1392427 ( 3.38%) 228550356 ( 0.86%) 164.14
realaud 102 ( 0.00%) 14912 ( 0.00%) 146.20
halflif 110 ( 0.00%) 12720 ( 0.00%) 115.64
starcra 437 ( 0.00%) 91417 ( 0.00%) 209.19
everque 2336 ( 0.01%) 1782387 ( 0.01%) 763.01
unreal 334 ( 0.00%) 34547 ( 0.00%) 103.43
quake 4421 ( 0.01%) 3113808 ( 0.01%) 704.32
cuseeme 15 ( 0.00%) 1880 ( 0.00%) 125.33
other 9023672 ( 21.89%) 5188628197 ( 19.49%) 575.00
icmp 830792 ( 2.02%) 102167152 ( 0.38%) 122.98
ipip 344 ( 0.00%) 40858 ( 0.00%) 118.77
ipsec 104 ( 0.00%) 16304 ( 0.00%) 156.77
ip6 37660 ( 0.09%) 5721215 ( 0.02%) 151.92
other 9252 ( 0.02%) 5092450 ( 0.02%) 550.42
frag 39472 ( 0.10%) 37895235 ( 0.14%) 960.05
ip6 54120 ( 0.13%) 7806819 ( 0.03%) 144.25
tcp6 39604 ( 0.10%) 5111980 ( 0.02%) 129.08
http(s) 333 ( 0.00%) 319869 ( 0.00%) 960.57
http(c) 3249 ( 0.01%) 446862 ( 0.00%) 137.54
smtp 2429 ( 0.01%) 1185326 ( 0.00%) 487.99
ssh 8 ( 0.00%) 1024 ( 0.00%) 128.00
dns 11 ( 0.00%) 2584 ( 0.00%) 234.91
bgp 115 ( 0.00%) 16633 ( 0.00%) 144.63
other 33459 ( 0.08%) 3139682 ( 0.01%) 93.84
udp6 10163 ( 0.02%) 2166494 ( 0.01%) 213.17
dns 10134 ( 0.02%) 2161822 ( 0.01%) 213.32
other 29 ( 0.00%) 4672 ( 0.00%) 161.10
icmp6 4307 ( 0.01%) 508083 ( 0.00%) 117.97
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
other6 16 ( 0.00%) 16182 ( 0.00%) 1011.38
tcpdump file: 200911181400.dump.gz (1058.83 MB)