Traffic Trace Info
DumpFile: 200912281400.dump
FileSize: 1347.19MB
Id: 200912281400
StartTime: Mon Dec 28 14:00:00 2009
EndTime: Mon Dec 28 14:15:01 2009
TotalTime: 900.58 seconds
TotalCapSize: 1059.62MB CapLen: 96 bytes
# of packets: 18845879 (11255.48MB)
AvgRate: 104.83Mbps stddev:20.28M
IP flow (unique src/dst pair) Information
# of flows: 993441 (avg. 18.97 pkts/flow)
Top 10 big flow size (bytes/total in %):
6.8% 6.2% 2.6% 2.0% 1.9% 1.7% 1.5% 1.5% 1.1% 1.1%
IP address Information
# of IPv4 addresses: 529779
Top 10 bandwidth usage (bytes/total in %):
15.3% 6.8% 6.8% 6.4% 5.2% 3.8% 3.1% 3.1% 2.7% 2.3%
# of IPv6 addresses: 928
Top 10 bandwidth usage (bytes/total in %):
32.8% 32.7% 18.2% 10.6% 3.8% 3.6% 3.3% 3.2% 2.6% 2.2%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](200912281400.pktlen.png)
detailed numbers
[ 32- 63]: 4075262
[ 64- 127]: 5820242
[ 128- 255]: 849225
[ 256- 511]: 508435
[ 512- 1023]: 476150
[ 1024- 2047]: 7116565
Protocol Breakdown
![[protocol breakdown chart]](200912281400.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 18845879 (100.00%) 11802222739 (100.00%) 626.25
ip 18814340 ( 99.83%) 11794056970 ( 99.93%) 626.87
tcp 15407877 ( 81.76%) 11002879836 ( 93.23%) 714.11
http(s) 6426184 ( 34.10%) 7898914935 ( 66.93%) 1229.18
http(c) 3984828 ( 21.14%) 610651357 ( 5.17%) 153.24
squid 352697 ( 1.87%) 79212476 ( 0.67%) 224.59
smtp 236238 ( 1.25%) 91002574 ( 0.77%) 385.22
nntp 56 ( 0.00%) 4355 ( 0.00%) 77.77
ftp 24687 ( 0.13%) 5090254 ( 0.04%) 206.19
pop3 38969 ( 0.21%) 14383567 ( 0.12%) 369.10
imap 2114 ( 0.01%) 209148 ( 0.00%) 98.93
telnet 4211 ( 0.02%) 310297 ( 0.00%) 73.69
ssh 20286 ( 0.11%) 3782759 ( 0.03%) 186.47
dns 40900 ( 0.22%) 7926258 ( 0.07%) 193.80
bgp 123 ( 0.00%) 31847 ( 0.00%) 258.92
napster 89 ( 0.00%) 8647 ( 0.00%) 97.16
realaud 5 ( 0.00%) 611 ( 0.00%) 122.20
rtsp 50189 ( 0.27%) 8440358 ( 0.07%) 168.17
icecast 13946 ( 0.07%) 929400 ( 0.01%) 66.64
other 4212349 ( 22.35%) 2281980633 ( 19.34%) 541.74
udp 2444629 ( 12.97%) 695844872 ( 5.90%) 284.64
dns 1089652 ( 5.78%) 156096080 ( 1.32%) 143.25
realaud 25 ( 0.00%) 2525 ( 0.00%) 101.00
halflif 89 ( 0.00%) 9709 ( 0.00%) 109.09
starcra 117 ( 0.00%) 23550 ( 0.00%) 201.28
everque 137 ( 0.00%) 39097 ( 0.00%) 285.38
unreal 31 ( 0.00%) 5157 ( 0.00%) 166.35
quake 30 ( 0.00%) 3783 ( 0.00%) 126.10
cuseeme 11 ( 0.00%) 1216 ( 0.00%) 110.55
other 1354236 ( 7.19%) 539415321 ( 4.57%) 398.32
icmp 872785 ( 4.63%) 67713162 ( 0.57%) 77.58
ipip 360 ( 0.00%) 43884 ( 0.00%) 121.90
ipsec 942 ( 0.00%) 468852 ( 0.00%) 497.72
ip6 81836 ( 0.43%) 26339120 ( 0.22%) 321.85
other 5911 ( 0.03%) 767244 ( 0.01%) 129.80
frag 1770 ( 0.01%) 1781830 ( 0.02%) 1006.68
ip6 31539 ( 0.17%) 8165769 ( 0.07%) 258.91
tcp6 10153 ( 0.05%) 4186594 ( 0.04%) 412.35
http(s) 95 ( 0.00%) 52970 ( 0.00%) 557.58
http(c) 3674 ( 0.02%) 331732 ( 0.00%) 90.29
smtp 1725 ( 0.01%) 871992 ( 0.01%) 505.50
ssh 1989 ( 0.01%) 2677646 ( 0.02%) 1346.23
dns 39 ( 0.00%) 7720 ( 0.00%) 197.95
bgp 106 ( 0.00%) 13442 ( 0.00%) 126.81
other 2525 ( 0.01%) 231092 ( 0.00%) 91.52
udp6 17375 ( 0.09%) 3483255 ( 0.03%) 200.48
dns 17326 ( 0.09%) 3476861 ( 0.03%) 200.67
other 49 ( 0.00%) 6394 ( 0.00%) 130.49
icmp6 3950 ( 0.02%) 458765 ( 0.00%) 116.14
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
other6 31 ( 0.00%) 33075 ( 0.00%) 1066.94
tcpdump file: 200912281400.dump.gz (467.95 MB)