Traffic Trace Info
DumpFile: 201004241400.dump
FileSize: 2331.26MB
Id: 201004241400
StartTime: Sat Apr 24 14:00:01 2010
EndTime: Sat Apr 24 14:15:01 2010
TotalTime: 900.38 seconds
TotalCapSize: 1824.71MB CapLen: 96 bytes
# of packets: 33196758 (21377.63MB)
AvgRate: 199.20Mbps stddev:21.57M
IP flow (unique src/dst pair) Information
# of flows: 847407 (avg. 39.17 pkts/flow)
Top 10 big flow size (bytes/total in %):
3.4% 1.4% 1.4% 1.1% 1.1% 1.0% 1.0% 1.0% 0.9% 0.9%
IP address Information
# of IPv4 addresses: 473974
Top 10 bandwidth usage (bytes/total in %):
15.2% 7.8% 7.3% 4.3% 3.5% 3.0% 2.8% 2.8% 2.8% 2.6%
# of IPv6 addresses: 1063
Top 10 bandwidth usage (bytes/total in %):
26.2% 10.1% 7.6% 7.6% 6.9% 5.9% 5.8% 4.7% 4.0% 4.0%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](201004241400.pktlen.png)
detailed numbers
[ 32- 63]: 6125531
[ 64- 127]: 8909488
[ 128- 255]: 1825079
[ 256- 511]: 1788701
[ 512- 1023]: 915853
[ 1024- 2047]: 13632106
Protocol Breakdown
![[protocol breakdown chart]](201004241400.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 33196758 (100.00%) 22416066305 (100.00%) 675.25
ip 33150658 ( 99.86%) 22407701238 ( 99.96%) 675.94
tcp 21257652 ( 64.04%) 16261993499 ( 72.55%) 764.99
http(s) 9022547 ( 27.18%) 12613242641 ( 56.27%) 1397.97
http(c) 6931879 ( 20.88%) 746716183 ( 3.33%) 107.72
squid 457340 ( 1.38%) 246720039 ( 1.10%) 539.47
smtp 261522 ( 0.79%) 86653539 ( 0.39%) 331.34
ftp 21116 ( 0.06%) 4650409 ( 0.02%) 220.23
pop3 16652 ( 0.05%) 11851203 ( 0.05%) 711.70
imap 10710 ( 0.03%) 9595408 ( 0.04%) 895.93
telnet 8930 ( 0.03%) 685091 ( 0.00%) 76.72
ssh 347949 ( 1.05%) 56934390 ( 0.25%) 163.63
dns 20749 ( 0.06%) 1445428 ( 0.01%) 69.66
bgp 175 ( 0.00%) 68230 ( 0.00%) 389.89
napster 157 ( 0.00%) 23236 ( 0.00%) 148.00
realaud 59 ( 0.00%) 11493 ( 0.00%) 194.80
rtsp 41125 ( 0.12%) 3022589 ( 0.01%) 73.50
icecast 13522 ( 0.04%) 7763803 ( 0.03%) 574.16
hotline 126 ( 0.00%) 172727 ( 0.00%) 1370.85
other 4103090 ( 12.36%) 2472436850 ( 11.03%) 602.58
udp 8371564 ( 25.22%) 4321427492 ( 19.28%) 516.20
dns 561800 ( 1.69%) 96780859 ( 0.43%) 172.27
realaud 1616 ( 0.00%) 98961 ( 0.00%) 61.24
halflif 88 ( 0.00%) 14353 ( 0.00%) 163.10
starcra 170 ( 0.00%) 19682 ( 0.00%) 115.78
everque 455 ( 0.00%) 80296 ( 0.00%) 176.47
unreal 118 ( 0.00%) 19777 ( 0.00%) 167.60
quake 26 ( 0.00%) 2409 ( 0.00%) 92.65
cuseeme 1 ( 0.00%) 83 ( 0.00%) 83.00
other 7806823 ( 23.52%) 4224290954 ( 18.84%) 541.10
icmp 443742 ( 1.34%) 36173961 ( 0.16%) 81.52
ipip 382 ( 0.00%) 47054 ( 0.00%) 123.18
ipsec 1831 ( 0.01%) 509146 ( 0.00%) 278.07
ip6 3040166 ( 9.16%) 1749221844 ( 7.80%) 575.37
other 35321 ( 0.11%) 38328242 ( 0.17%) 1085.14
frag 3513 ( 0.01%) 3163848 ( 0.01%) 900.61
ip6 46100 ( 0.14%) 8365067 ( 0.04%) 181.45
tcp6 11337 ( 0.03%) 2197670 ( 0.01%) 193.85
http(s) 508 ( 0.00%) 709801 ( 0.00%) 1397.25
http(c) 1211 ( 0.00%) 117629 ( 0.00%) 97.13
smtp 177 ( 0.00%) 52609 ( 0.00%) 297.23
ftp 2425 ( 0.01%) 244763 ( 0.00%) 100.93
imap 262 ( 0.00%) 29906 ( 0.00%) 114.15
ssh 1846 ( 0.01%) 333924 ( 0.00%) 180.89
dns 73 ( 0.00%) 22636 ( 0.00%) 310.08
bgp 106 ( 0.00%) 13927 ( 0.00%) 131.39
other 4729 ( 0.01%) 672475 ( 0.00%) 142.20
udp6 27999 ( 0.08%) 5269211 ( 0.02%) 188.19
dns 26966 ( 0.08%) 5134566 ( 0.02%) 190.41
other 1033 ( 0.00%) 134645 ( 0.00%) 130.34
icmp6 6642 ( 0.02%) 805613 ( 0.00%) 121.29
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
other6 92 ( 0.00%) 88493 ( 0.00%) 961.88
tcpdump file: 201004241400.dump.gz (835.00 MB)