Traffic Trace Info
DumpFile: 201005151400.dump
FileSize: 2335.22MB
Id: 201005151400
StartTime: Sat May 15 14:00:01 2010
EndTime: Sat May 15 14:15:00 2010
TotalTime: 899.35 seconds
TotalCapSize: 1826.65MB CapLen: 96 bytes
# of packets: 33328904 (21512.89MB)
AvgRate: 200.68Mbps stddev:22.58M
IP flow (unique src/dst pair) Information
# of flows: 1181036 (avg. 28.22 pkts/flow)
Top 10 big flow size (bytes/total in %):
5.4% 1.5% 1.5% 1.5% 1.2% 1.2% 1.0% 0.7% 0.6% 0.6%
IP address Information
# of IPv4 addresses: 633906
Top 10 bandwidth usage (bytes/total in %):
15.7% 9.0% 5.4% 5.4% 5.0% 4.7% 4.7% 3.4% 2.2% 2.1%
# of IPv6 addresses: 981
Top 10 bandwidth usage (bytes/total in %):
30.6% 20.1% 4.1% 4.1% 4.1% 3.8% 3.8% 3.8% 3.8% 3.4%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](201005151400.pktlen.png)
detailed numbers
[ 32- 63]: 4400923
[ 64- 127]: 9407411
[ 128- 255]: 2369492
[ 256- 511]: 2467464
[ 512- 1023]: 959685
[ 1024- 2047]: 13723929
Protocol Breakdown
![[protocol breakdown chart]](201005151400.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 33328904 (100.00%) 22557898685 (100.00%) 676.83
ip 33291590 ( 99.89%) 22549279476 ( 99.96%) 677.33
tcp 17507315 ( 52.53%) 14417851788 ( 63.91%) 823.53
http(s) 7882741 ( 23.65%) 10811509297 ( 47.93%) 1371.54
http(c) 4873993 ( 14.62%) 759377235 ( 3.37%) 155.80
squid 342049 ( 1.03%) 133652225 ( 0.59%) 390.74
smtp 197152 ( 0.59%) 40220790 ( 0.18%) 204.01
ftp 20374 ( 0.06%) 2025233 ( 0.01%) 99.40
pop3 8586 ( 0.03%) 4137235 ( 0.02%) 481.86
imap 3263 ( 0.01%) 1464781 ( 0.01%) 448.91
telnet 6916 ( 0.02%) 523732 ( 0.00%) 75.73
ssh 157788 ( 0.47%) 26184883 ( 0.12%) 165.95
dns 22655 ( 0.07%) 1580402 ( 0.01%) 69.76
bgp 182 ( 0.00%) 72032 ( 0.00%) 395.78
napster 79 ( 0.00%) 7190 ( 0.00%) 91.01
realaud 4391 ( 0.01%) 3543658 ( 0.02%) 807.03
rtsp 196640 ( 0.59%) 19556284 ( 0.09%) 99.45
icecast 13395 ( 0.04%) 1534969 ( 0.01%) 114.59
hotline 19 ( 0.00%) 2253 ( 0.00%) 118.58
other 3777091 ( 11.33%) 2612459529 ( 11.58%) 691.66
udp 11180569 ( 33.55%) 5923943746 ( 26.26%) 529.84
dns 689750 ( 2.07%) 137533219 ( 0.61%) 199.40
rip 1 ( 0.00%) 60 ( 0.00%) 60.00
realaud 55 ( 0.00%) 4997 ( 0.00%) 90.85
halflif 73 ( 0.00%) 7093 ( 0.00%) 97.16
starcra 105 ( 0.00%) 13475 ( 0.00%) 128.33
everque 3480 ( 0.01%) 1628830 ( 0.01%) 468.05
unreal 155 ( 0.00%) 27406 ( 0.00%) 176.81
quake 19 ( 0.00%) 1834 ( 0.00%) 96.53
cuseeme 2 ( 0.00%) 146 ( 0.00%) 73.00
other 10467452 ( 31.41%) 5783089591 ( 25.64%) 552.48
icmp 795888 ( 2.39%) 146902721 ( 0.65%) 184.58
ipip 365 ( 0.00%) 44814 ( 0.00%) 122.78
ipsec 4372 ( 0.01%) 620690 ( 0.00%) 141.97
ip6 3787642 ( 11.36%) 2046334657 ( 9.07%) 540.27
other 15439 ( 0.05%) 13581060 ( 0.06%) 879.66
frag 69296 ( 0.21%) 53545120 ( 0.24%) 772.70
ip6 37314 ( 0.11%) 8619209 ( 0.04%) 230.99
tcp6 6761 ( 0.02%) 1620686 ( 0.01%) 239.71
http(s) 638 ( 0.00%) 739917 ( 0.00%) 1159.74
http(c) 1242 ( 0.00%) 119414 ( 0.00%) 96.15
smtp 73 ( 0.00%) 29981 ( 0.00%) 410.70
imap 225 ( 0.00%) 27738 ( 0.00%) 123.28
ssh 1809 ( 0.01%) 328534 ( 0.00%) 181.61
dns 233 ( 0.00%) 56753 ( 0.00%) 243.58
bgp 125 ( 0.00%) 18644 ( 0.00%) 149.15
other 2416 ( 0.01%) 299705 ( 0.00%) 124.05
udp6 25634 ( 0.08%) 5937576 ( 0.03%) 231.63
dns 25155 ( 0.08%) 5873241 ( 0.03%) 233.48
other 479 ( 0.00%) 64335 ( 0.00%) 134.31
icmp6 4427 ( 0.01%) 618342 ( 0.00%) 139.68
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
other6 462 ( 0.00%) 438525 ( 0.00%) 949.19
tcpdump file: 201005151400.dump.gz (854.84 MB)