Traffic Trace Info
DumpFile: 200912101400.dump
FileSize: 2155.54MB
Id: 200912101400
StartTime: Thu Dec 10 14:00:00 2009
EndTime: Thu Dec 10 14:15:00 2009
TotalTime: 900.22 seconds
TotalCapSize: 1692.21MB CapLen: 96 bytes
# of packets: 30363909 (21080.39MB)
AvgRate: 196.44Mbps stddev:17.53M
IP flow (unique src/dst pair) Information
# of flows: 1020159 (avg. 29.76 pkts/flow)
Top 10 big flow size (bytes/total in %):
4.9% 3.8% 3.6% 1.7% 1.5% 1.4% 1.4% 1.2% 1.1% 1.1%
IP address Information
# of IPv4 addresses: 577075
Top 10 bandwidth usage (bytes/total in %):
17.0% 5.3% 5.0% 3.9% 3.8% 3.7% 3.1% 2.6% 2.0% 1.9%
# of IPv6 addresses: 948
Top 10 bandwidth usage (bytes/total in %):
54.9% 54.9% 13.1% 5.7% 2.4% 2.4% 2.3% 2.3% 1.9% 1.9%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](200912101400.pktlen.png)
detailed numbers
[ 32- 63]: 6197242
[ 64- 127]: 7820700
[ 128- 255]: 1012208
[ 256- 511]: 613002
[ 512- 1023]: 665062
[ 1024- 2047]: 14055695
Protocol Breakdown
![[protocol breakdown chart]](200912101400.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 30363909 (100.00%) 22104393098 (100.00%) 727.98
ip 30245809 ( 99.61%) 22090589088 ( 99.94%) 730.37
tcp 25115596 ( 82.72%) 19580400794 ( 88.58%) 779.61
http(s) 10979246 ( 36.16%) 14860517588 ( 67.23%) 1353.51
http(c) 8561380 ( 28.20%) 940289819 ( 4.25%) 109.83
squid 314547 ( 1.04%) 86010420 ( 0.39%) 273.44
smtp 265011 ( 0.87%) 121754951 ( 0.55%) 459.43
nntp 4 ( 0.00%) 276 ( 0.00%) 69.00
ftp 28681 ( 0.09%) 5209191 ( 0.02%) 181.63
pop3 16521 ( 0.05%) 4822509 ( 0.02%) 291.90
imap 32388 ( 0.11%) 3184329 ( 0.01%) 98.32
telnet 26198 ( 0.09%) 1935355 ( 0.01%) 73.87
ssh 85279 ( 0.28%) 58519296 ( 0.26%) 686.21
dns 26000 ( 0.09%) 8664383 ( 0.04%) 333.25
bgp 143 ( 0.00%) 51575 ( 0.00%) 360.66
napster 47 ( 0.00%) 2934 ( 0.00%) 62.43
realaud 17 ( 0.00%) 1838 ( 0.00%) 108.12
rtsp 156713 ( 0.52%) 41424233 ( 0.19%) 264.33
icecast 17700 ( 0.06%) 15694548 ( 0.07%) 886.70
hotline 1 ( 0.00%) 60 ( 0.00%) 60.00
other 4605714 ( 15.17%) 3432317129 ( 15.53%) 745.23
udp 4444670 ( 14.64%) 2444939443 ( 11.06%) 550.08
dns 1125724 ( 3.71%) 196153317 ( 0.89%) 174.25
realaud 2769 ( 0.01%) 169435 ( 0.00%) 61.19
halflif 101 ( 0.00%) 8875 ( 0.00%) 87.87
starcra 77 ( 0.00%) 13400 ( 0.00%) 174.03
everque 382 ( 0.00%) 150282 ( 0.00%) 393.41
unreal 26 ( 0.00%) 4062 ( 0.00%) 156.23
quake 18 ( 0.00%) 1594 ( 0.00%) 88.56
cuseeme 5 ( 0.00%) 497 ( 0.00%) 99.40
other 3315213 ( 10.92%) 2248123750 ( 10.17%) 678.12
icmp 590385 ( 1.94%) 48525931 ( 0.22%) 82.19
ipip 340 ( 0.00%) 41378 ( 0.00%) 121.70
ipsec 38 ( 0.00%) 5220 ( 0.00%) 137.37
ip6 51836 ( 0.17%) 9482854 ( 0.04%) 182.94
other 42944 ( 0.14%) 7193468 ( 0.03%) 167.51
frag 2435 ( 0.01%) 2427377 ( 0.01%) 996.87
ip6 118100 ( 0.39%) 13804010 ( 0.06%) 116.88
tcp6 93244 ( 0.31%) 9341046 ( 0.04%) 100.18
http(s) 85 ( 0.00%) 58253 ( 0.00%) 685.33
http(c) 3525 ( 0.01%) 317107 ( 0.00%) 89.96
smtp 1523 ( 0.01%) 792873 ( 0.00%) 520.60
ssh 2515 ( 0.01%) 486838 ( 0.00%) 193.57
dns 5 ( 0.00%) 746 ( 0.00%) 149.20
bgp 124 ( 0.00%) 17886 ( 0.00%) 144.24
other 85467 ( 0.28%) 7667343 ( 0.03%) 89.71
udp6 20435 ( 0.07%) 3928394 ( 0.02%) 192.24
dns 20362 ( 0.07%) 3915940 ( 0.02%) 192.32
other 73 ( 0.00%) 12454 ( 0.00%) 170.60
icmp6 4380 ( 0.01%) 520390 ( 0.00%) 118.81
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
other6 11 ( 0.00%) 10100 ( 0.00%) 918.18
tcpdump file: 200912101400.dump.gz (743.78 MB)