Traffic Trace Info
DumpFile: 201005201400.dump
FileSize: 2694.66MB
Id: 201005201400
StartTime: Thu May 20 14:00:01 2010
EndTime: Thu May 20 14:15:01 2010
TotalTime: 900.20 seconds
TotalCapSize: -1987.39MB CapLen: 96 bytes
# of packets: 38406841 (24528.21MB)
AvgRate: 228.56Mbps stddev:24.44M
IP flow (unique src/dst pair) Information
# of flows: 998392 (avg. 38.47 pkts/flow)
Top 10 big flow size (bytes/total in %):
1.8% 1.5% 1.0% 1.0% 1.0% 1.0% 1.0% 0.9% 0.8% 0.7%
IP address Information
# of IPv4 addresses: 542604
Top 10 bandwidth usage (bytes/total in %):
14.2% 6.7% 4.2% 3.1% 3.0% 2.9% 2.7% 2.5% 2.3% 1.8%
# of IPv6 addresses: 1110
Top 10 bandwidth usage (bytes/total in %):
40.0% 23.1% 16.8% 16.6% 5.0% 3.6% 3.5% 2.9% 2.7% 2.3%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](201005201400.pktlen.png)
detailed numbers
[ 32- 63]: 6503405
[ 64- 127]: 10579710
[ 128- 255]: 2595729
[ 256- 511]: 1893455
[ 512- 1023]: 1012033
[ 1024- 2047]: 15822509
Protocol Breakdown
![[protocol breakdown chart]](201005201400.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 38406841 (100.00%) 25719687502 (100.00%) 669.66
ip 38346002 ( 99.84%) 25698483889 ( 99.92%) 670.17
tcp 24021499 ( 62.54%) 18508470547 ( 71.96%) 770.50
http(s) 10403049 ( 27.09%) 14071543729 ( 54.71%) 1352.64
http(c) 7602986 ( 19.80%) 1171906148 ( 4.56%) 154.14
squid 359195 ( 0.94%) 209981157 ( 0.82%) 584.59
smtp 323910 ( 0.84%) 122183115 ( 0.48%) 377.21
nntp 1 ( 0.00%) 60 ( 0.00%) 60.00
ftp 77781 ( 0.20%) 12341810 ( 0.05%) 158.67
pop3 16264 ( 0.04%) 7998479 ( 0.03%) 491.79
imap 242183 ( 0.63%) 250189748 ( 0.97%) 1033.06
telnet 2731 ( 0.01%) 199418 ( 0.00%) 73.02
ssh 20138 ( 0.05%) 6294025 ( 0.02%) 312.54
dns 24908 ( 0.06%) 1818829 ( 0.01%) 73.02
bgp 172 ( 0.00%) 73152 ( 0.00%) 425.30
napster 21 ( 0.00%) 2296 ( 0.00%) 109.33
realaud 184 ( 0.00%) 14637 ( 0.00%) 79.55
rtsp 250053 ( 0.65%) 66810080 ( 0.26%) 267.18
icecast 41640 ( 0.11%) 25731586 ( 0.10%) 617.95
hotline 6 ( 0.00%) 567 ( 0.00%) 94.50
other 4656271 ( 12.12%) 2561381351 ( 9.96%) 550.09
udp 10630240 ( 27.68%) 5423672751 ( 21.09%) 510.21
dns 843275 ( 2.20%) 154010902 ( 0.60%) 182.63
realaud 30 ( 0.00%) 3425 ( 0.00%) 114.17
halflif 85 ( 0.00%) 12373 ( 0.00%) 145.56
starcra 126 ( 0.00%) 18022 ( 0.00%) 143.03
everque 923 ( 0.00%) 209626 ( 0.00%) 227.11
unreal 81 ( 0.00%) 14288 ( 0.00%) 176.40
quake 19 ( 0.00%) 1924 ( 0.00%) 101.26
cuseeme 14 ( 0.00%) 1318 ( 0.00%) 94.14
other 9783842 ( 25.47%) 5269187298 ( 20.49%) 538.56
icmp 321988 ( 0.84%) 26468148 ( 0.10%) 82.20
ipip 379 ( 0.00%) 47536 ( 0.00%) 125.42
ipsec 741 ( 0.00%) 207182 ( 0.00%) 279.60
ip6 3351349 ( 8.73%) 1735885897 ( 6.75%) 517.97
other 19806 ( 0.05%) 3731828 ( 0.01%) 188.42
frag 13304 ( 0.03%) 10378808 ( 0.04%) 780.13
ip6 60839 ( 0.16%) 21203613 ( 0.08%) 348.52
tcp6 15897 ( 0.04%) 11384518 ( 0.04%) 716.14
http(s) 1732 ( 0.00%) 1985943 ( 0.01%) 1146.62
http(c) 1918 ( 0.00%) 201150 ( 0.00%) 104.87
smtp 154 ( 0.00%) 52981 ( 0.00%) 344.03
imap 267 ( 0.00%) 31999 ( 0.00%) 119.85
ssh 7 ( 0.00%) 954 ( 0.00%) 136.29
dns 403 ( 0.00%) 71220 ( 0.00%) 176.72
bgp 110 ( 0.00%) 14062 ( 0.00%) 127.84
other 11306 ( 0.03%) 9026209 ( 0.04%) 798.36
udp6 37003 ( 0.10%) 8625902 ( 0.03%) 233.11
dns 36121 ( 0.09%) 8210239 ( 0.03%) 227.30
other 882 ( 0.00%) 415663 ( 0.00%) 471.27
icmp6 7710 ( 0.02%) 1022309 ( 0.00%) 132.60
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
other6 199 ( 0.00%) 166804 ( 0.00%) 838.21
tcpdump file: 201005201400.dump.gz (981.73 MB)