Traffic Trace Info
DumpFile: 201005241400.dump
FileSize: 2269.03MB
Id: 201005241400
StartTime: Mon May 24 14:00:01 2010
EndTime: Mon May 24 14:15:00 2010
TotalTime: 899.51 seconds
TotalCapSize: 1778.94MB CapLen: 96 bytes
# of packets: 32115337 (19977.37MB)
AvgRate: 186.34Mbps stddev:24.11M
IP flow (unique src/dst pair) Information
# of flows: 821411 (avg. 39.10 pkts/flow)
Top 10 big flow size (bytes/total in %):
3.2% 2.9% 1.5% 1.5% 1.4% 1.4% 1.1% 1.1% 1.1% 0.8%
IP address Information
# of IPv4 addresses: 486168
Top 10 bandwidth usage (bytes/total in %):
15.3% 10.0% 6.1% 5.8% 5.4% 3.6% 3.3% 3.0% 2.5% 2.3%
# of IPv6 addresses: 1047
Top 10 bandwidth usage (bytes/total in %):
13.2% 13.2% 12.2% 9.7% 8.6% 4.6% 4.2% 4.2% 4.1% 3.8%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](201005241400.pktlen.png)
detailed numbers
[ 32- 63]: 5183420
[ 64- 127]: 9092809
[ 128- 255]: 2419628
[ 256- 511]: 1692304
[ 512- 1023]: 935487
[ 1024- 2047]: 12791689
Protocol Breakdown
![[protocol breakdown chart]](201005241400.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 32115337 (100.00%) 20947795333 (100.00%) 652.27
ip 32083767 ( 99.90%) 20941159976 ( 99.97%) 652.70
tcp 19144965 ( 59.61%) 14116364714 ( 67.39%) 737.34
http(s) 7935833 ( 24.71%) 10561573639 ( 50.42%) 1330.87
http(c) 6959891 ( 21.67%) 1234949587 ( 5.90%) 177.44
squid 263669 ( 0.82%) 124204048 ( 0.59%) 471.06
smtp 241507 ( 0.75%) 88973753 ( 0.42%) 368.41
nntp 9 ( 0.00%) 670 ( 0.00%) 74.44
ftp 30738 ( 0.10%) 8132397 ( 0.04%) 264.57
pop3 23482 ( 0.07%) 10838267 ( 0.05%) 461.56
imap 14710 ( 0.05%) 7781460 ( 0.04%) 528.99
telnet 1003 ( 0.00%) 75449 ( 0.00%) 75.22
ssh 46507 ( 0.14%) 21882509 ( 0.10%) 470.52
dns 508732 ( 1.58%) 491063014 ( 2.34%) 965.27
bgp 144 ( 0.00%) 58041 ( 0.00%) 403.06
napster 6 ( 0.00%) 591 ( 0.00%) 98.50
realaud 60 ( 0.00%) 9069 ( 0.00%) 151.15
rtsp 49 ( 0.00%) 3614 ( 0.00%) 73.76
icecast 44612 ( 0.14%) 38661588 ( 0.18%) 866.62
hotline 22 ( 0.00%) 1735 ( 0.00%) 78.86
other 3073989 ( 9.57%) 1528155163 ( 7.30%) 497.12
udp 8943255 ( 27.85%) 4678353055 ( 22.33%) 523.12
dns 589880 ( 1.84%) 107247660 ( 0.51%) 181.81
realaud 52 ( 0.00%) 6123 ( 0.00%) 117.75
halflif 39 ( 0.00%) 4559 ( 0.00%) 116.90
starcra 80 ( 0.00%) 10567 ( 0.00%) 132.09
everque 701 ( 0.00%) 115130 ( 0.00%) 164.24
unreal 51 ( 0.00%) 9033 ( 0.00%) 177.12
quake 33 ( 0.00%) 3032 ( 0.00%) 91.88
cuseeme 4984 ( 0.02%) 572337 ( 0.00%) 114.83
other 8346988 ( 25.99%) 4570266830 ( 21.82%) 547.53
icmp 329693 ( 1.03%) 26416849 ( 0.13%) 80.13
ipip 340 ( 0.00%) 41512 ( 0.00%) 122.09
ipsec 447 ( 0.00%) 83674 ( 0.00%) 187.19
ip6 3629316 ( 11.30%) 2112845335 ( 10.09%) 582.16
other 35751 ( 0.11%) 7054837 ( 0.03%) 197.33
frag 1792 ( 0.01%) 1535064 ( 0.01%) 856.62
ip6 31570 ( 0.10%) 6635357 ( 0.03%) 210.18
tcp6 8666 ( 0.03%) 1105996 ( 0.01%) 127.62
http(s) 196 ( 0.00%) 168704 ( 0.00%) 860.73
http(c) 1392 ( 0.00%) 139650 ( 0.00%) 100.32
smtp 202 ( 0.00%) 72269 ( 0.00%) 357.77
ftp 30 ( 0.00%) 2733 ( 0.00%) 91.10
imap 324 ( 0.00%) 38317 ( 0.00%) 118.26
ssh 28 ( 0.00%) 6168 ( 0.00%) 220.29
dns 288 ( 0.00%) 58726 ( 0.00%) 203.91
bgp 121 ( 0.00%) 16345 ( 0.00%) 135.08
other 6085 ( 0.02%) 603084 ( 0.00%) 99.11
udp6 16017 ( 0.05%) 4541378 ( 0.02%) 283.53
dns 15808 ( 0.05%) 4502312 ( 0.02%) 284.81
other 209 ( 0.00%) 39066 ( 0.00%) 186.92
icmp6 6760 ( 0.02%) 895146 ( 0.00%) 132.42
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
other6 97 ( 0.00%) 88757 ( 0.00%) 915.02
tcpdump file: 201005241400.dump.gz (832.48 MB)