Traffic Trace Info
DumpFile: 201007101400.dump
FileSize: 2445.91MB
Id: 201007101400
StartTime: Sat Jul 10 14:00:01 2010
EndTime: Sat Jul 10 14:15:01 2010
TotalTime: 899.85 seconds
TotalCapSize: 1922.34MB CapLen: 96 bytes
# of packets: 34311793 (22200.12MB)
AvgRate: 206.96Mbps stddev:18.12M
IP flow (unique src/dst pair) Information
# of flows: 1068823 (avg. 32.10 pkts/flow)
Top 10 big flow size (bytes/total in %):
6.5% 3.8% 2.7% 1.7% 1.6% 1.0% 0.8% 0.8% 0.7% 0.6%
IP address Information
# of IPv4 addresses: 567053
Top 10 bandwidth usage (bytes/total in %):
13.8% 10.8% 9.9% 6.7% 4.9% 4.0% 3.7% 2.8% 2.5% 2.4%
# of IPv6 addresses: 1164
Top 10 bandwidth usage (bytes/total in %):
27.7% 27.7% 8.2% 8.0% 5.1% 3.8% 3.5% 3.5% 3.5% 3.3%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](201007101400.pktlen.png)
detailed numbers
[ 32- 63]: 4917038
[ 64- 127]: 10144738
[ 128- 255]: 2094176
[ 256- 511]: 1800922
[ 512- 1023]: 1019461
[ 1024- 2047]: 14335458
Protocol Breakdown
![[protocol breakdown chart]](201007101400.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 34311793 (100.00%) 23278514181 (100.00%) 678.44
ip 34283400 ( 99.92%) 23268892965 ( 99.96%) 678.72
tcp 20588893 ( 60.01%) 16388284217 ( 70.40%) 795.98
http(s) 9457851 ( 27.56%) 12936397443 ( 55.57%) 1367.79
http(c) 6590995 ( 19.21%) 1070838970 ( 4.60%) 162.47
squid 272922 ( 0.80%) 100929974 ( 0.43%) 369.81
smtp 198477 ( 0.58%) 49924853 ( 0.21%) 251.54
nntp 140 ( 0.00%) 13285 ( 0.00%) 94.89
ftp 26890 ( 0.08%) 8217989 ( 0.04%) 305.62
pop3 9360 ( 0.03%) 2250210 ( 0.01%) 240.41
imap 5218 ( 0.02%) 4723790 ( 0.02%) 905.29
telnet 85220 ( 0.25%) 6296217 ( 0.03%) 73.88
ssh 152605 ( 0.44%) 21549358 ( 0.09%) 141.21
dns 68542 ( 0.20%) 4759076 ( 0.02%) 69.43
bgp 189 ( 0.00%) 76709 ( 0.00%) 405.87
napster 41 ( 0.00%) 3344 ( 0.00%) 81.56
realaud 32 ( 0.00%) 5091 ( 0.00%) 159.09
rtsp 11942 ( 0.03%) 11107549 ( 0.05%) 930.12
icecast 30253 ( 0.09%) 23502971 ( 0.10%) 776.88
hotline 66 ( 0.00%) 4978 ( 0.00%) 75.42
other 3678147 ( 10.72%) 2147682230 ( 9.23%) 583.90
udp 9006542 ( 26.25%) 4403179836 ( 18.92%) 488.89
dns 682927 ( 1.99%) 116413948 ( 0.50%) 170.46
rip 1 ( 0.00%) 60 ( 0.00%) 60.00
realaud 10 ( 0.00%) 925 ( 0.00%) 92.50
halflif 66 ( 0.00%) 7136 ( 0.00%) 108.12
starcra 53 ( 0.00%) 6436 ( 0.00%) 121.43
everque 585 ( 0.00%) 104581 ( 0.00%) 178.77
unreal 23 ( 0.00%) 3242 ( 0.00%) 140.96
quake 14 ( 0.00%) 1696 ( 0.00%) 121.14
cuseeme 16 ( 0.00%) 1268 ( 0.00%) 79.25
other 8321762 ( 24.25%) 4286486846 ( 18.41%) 515.09
icmp 694231 ( 2.02%) 152193506 ( 0.65%) 219.23
igmp 1 ( 0.00%) 60 ( 0.00%) 60.00
ipip 371 ( 0.00%) 45839 ( 0.00%) 123.56
ipsec 10091 ( 0.03%) 2395174 ( 0.01%) 237.36
ip6 3980676 ( 11.60%) 2322381673 ( 9.98%) 583.41
other 2595 ( 0.01%) 412660 ( 0.00%) 159.02
frag 9453 ( 0.03%) 7555230 ( 0.03%) 799.24
ip6 28393 ( 0.08%) 9621216 ( 0.04%) 338.86
tcp6 10995 ( 0.03%) 5504946 ( 0.02%) 500.68
http(s) 2241 ( 0.01%) 3166631 ( 0.01%) 1413.04
http(c) 952 ( 0.00%) 116654 ( 0.00%) 122.54
smtp 365 ( 0.00%) 246961 ( 0.00%) 676.61
ftp 59 ( 0.00%) 7057 ( 0.00%) 119.61
pop3 13 ( 0.00%) 1186 ( 0.00%) 91.23
imap 349 ( 0.00%) 50602 ( 0.00%) 144.99
ssh 2097 ( 0.01%) 475586 ( 0.00%) 226.79
dns 72 ( 0.00%) 11759 ( 0.00%) 163.32
bgp 429 ( 0.00%) 275110 ( 0.00%) 641.28
other 4418 ( 0.01%) 1153400 ( 0.00%) 261.07
udp6 12707 ( 0.04%) 3226724 ( 0.01%) 253.93
dns 12017 ( 0.04%) 3134700 ( 0.01%) 260.86
other 690 ( 0.00%) 92024 ( 0.00%) 133.37
icmp6 4487 ( 0.01%) 716247 ( 0.00%) 159.63
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
other6 174 ( 0.00%) 169219 ( 0.00%) 972.52
tcpdump file: 201007101400.dump.gz (881.77 MB)