Traffic Trace Info
DumpFile: 200911211400.dump
FileSize: 1315.63MB
Id: 200911211400
StartTime: Sat Nov 21 14:00:01 2009
EndTime: Sat Nov 21 14:15:00 2009
TotalTime: 899.30 seconds
TotalCapSize: 1033.93MB CapLen: 96 bytes
# of packets: 18461064 (10503.07MB)
AvgRate: 97.97Mbps stddev:12.78M
IP flow (unique src/dst pair) Information
# of flows: 759537 (avg. 24.31 pkts/flow)
Top 10 big flow size (bytes/total in %):
7.4% 2.5% 1.9% 1.8% 1.4% 1.4% 1.4% 1.2% 1.1% 1.1%
IP address Information
# of IPv4 addresses: 482422
Top 10 bandwidth usage (bytes/total in %):
13.3% 10.6% 7.4% 3.6% 3.4% 2.6% 2.6% 2.6% 2.3% 2.3%
# of IPv6 addresses: 873
Top 10 bandwidth usage (bytes/total in %):
70.6% 70.5% 4.6% 3.1% 3.1% 2.8% 2.4% 2.2% 1.6% 1.6%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](200911211400.pktlen.png)
detailed numbers
[ 32- 63]: 4829068
[ 64- 127]: 5239853
[ 128- 255]: 967590
[ 256- 511]: 471443
[ 512- 1023]: 315002
[ 1024- 2047]: 6638108
Protocol Breakdown
![[protocol breakdown chart]](200911211400.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 18461064 (100.00%) 11013271007 (100.00%) 596.57
ip 18367968 ( 99.50%) 11001692968 ( 99.89%) 598.96
tcp 15615393 ( 84.59%) 10402351304 ( 94.45%) 666.16
http(s) 4994866 ( 27.06%) 6490613379 ( 58.93%) 1299.46
http(c) 3706149 ( 20.08%) 515321623 ( 4.68%) 139.05
squid 933307 ( 5.06%) 222574319 ( 2.02%) 238.48
smtp 187884 ( 1.02%) 53870560 ( 0.49%) 286.72
nntp 407405 ( 2.21%) 24673104 ( 0.22%) 60.56
ftp 80664 ( 0.44%) 34619870 ( 0.31%) 429.19
pop3 7023 ( 0.04%) 3394026 ( 0.03%) 483.27
imap 2379 ( 0.01%) 1204972 ( 0.01%) 506.50
telnet 6879 ( 0.04%) 503432 ( 0.00%) 73.18
ssh 32802 ( 0.18%) 4983641 ( 0.05%) 151.93
dns 131357 ( 0.71%) 188084232 ( 1.71%) 1431.86
bgp 150 ( 0.00%) 61116 ( 0.00%) 407.44
napster 25 ( 0.00%) 2494 ( 0.00%) 99.76
realaud 85 ( 0.00%) 11550 ( 0.00%) 135.88
rtsp 16542 ( 0.09%) 1093508 ( 0.01%) 66.10
icecast 7147 ( 0.04%) 434553 ( 0.00%) 60.80
other 5100717 ( 27.63%) 2860904205 ( 25.98%) 560.88
udp 1929173 ( 10.45%) 526858316 ( 4.78%) 273.10
dns 968560 ( 5.25%) 151105994 ( 1.37%) 156.01
realaud 924 ( 0.01%) 56320 ( 0.00%) 60.95
halflif 75 ( 0.00%) 7397 ( 0.00%) 98.63
starcra 63 ( 0.00%) 10887 ( 0.00%) 172.81
everque 318 ( 0.00%) 45668 ( 0.00%) 143.61
unreal 21 ( 0.00%) 3061 ( 0.00%) 145.76
quake 11 ( 0.00%) 1302 ( 0.00%) 118.36
cuseeme 6 ( 0.00%) 481 ( 0.00%) 80.17
other 959129 ( 5.20%) 375568041 ( 3.41%) 391.57
icmp 743663 ( 4.03%) 58234078 ( 0.53%) 78.31
ipip 335 ( 0.00%) 42207 ( 0.00%) 125.99
ipsec 28 ( 0.00%) 3528 ( 0.00%) 126.00
ip6 42604 ( 0.23%) 6417436 ( 0.06%) 150.63
other 36772 ( 0.20%) 7786099 ( 0.07%) 211.74
frag 2264 ( 0.01%) 1891922 ( 0.02%) 835.65
ip6 93096 ( 0.50%) 11578039 ( 0.11%) 124.37
tcp6 81664 ( 0.44%) 9500481 ( 0.09%) 116.34
http(s) 294 ( 0.00%) 380687 ( 0.00%) 1294.85
http(c) 3740 ( 0.02%) 340824 ( 0.00%) 91.13
smtp 977 ( 0.01%) 522769 ( 0.00%) 535.08
ssh 8 ( 0.00%) 1040 ( 0.00%) 130.00
dns 4 ( 0.00%) 1688 ( 0.00%) 422.00
bgp 107 ( 0.00%) 14319 ( 0.00%) 133.82
other 76534 ( 0.41%) 8239154 ( 0.07%) 107.65
udp6 7341 ( 0.04%) 1591115 ( 0.01%) 216.74
dns 7314 ( 0.04%) 1587958 ( 0.01%) 217.11
halflif 1 ( 0.00%) 114 ( 0.00%) 114.00
quake 1 ( 0.00%) 113 ( 0.00%) 113.00
other 25 ( 0.00%) 2930 ( 0.00%) 117.20
icmp6 4050 ( 0.02%) 473073 ( 0.00%) 116.81
pim6 31 ( 0.00%) 4216 ( 0.00%) 136.00
other6 10 ( 0.00%) 9154 ( 0.00%) 915.40
tcpdump file: 200911211400.dump.gz (462.61 MB)