Traffic Trace Info


DumpFile: 201007291400.dump
FileSize: 2411.10MB
Id: 201007291400
StartTime: Thu Jul 29 14:00:00 2010
EndTime: Thu Jul 29 14:15:01 2010
TotalTime: 900.24 seconds
TotalCapSize: 1880.01MB CapLen: 96 bytes
# of packets: 34805261 (23735.76MB)
AvgRate: 221.17Mbps stddev:17.94M

IP flow (unique src/dst pair) Information

# of flows: 903061 (avg. 38.54 pkts/flow)
Top 10 big flow size (bytes/total in %):
5.7% 3.6% 2.0% 1.8% 1.2% 1.1% 1.0% 0.9% 0.9% 0.9%

IP address Information

# of IPv4 addresses: 475738
Top 10 bandwidth usage (bytes/total in %):
11.7% 8.3% 5.8% 5.8% 4.4% 4.0% 4.0% 2.8% 2.6% 2.6%
# of IPv6 addresses: 1925
Top 10 bandwidth usage (bytes/total in %):
41.5% 39.7% 33.3% 33.2% 3.9% 3.9% 1.6% 1.6% 1.5% 1.4%

Packet Size Distribution (including MAC headers)

[packet size distribution]
detailed numbers
 [   32-   63]:    5566281
 [   64-  127]:    8559529
 [  128-  255]:    2024782
 [  256-  511]:    1727226
 [  512- 1023]:    2226258
 [ 1024- 2047]:   14701185


Protocol Breakdown

[protocol breakdown chart]

     protocol		packets			bytes		bytes/pkt
------------------------------------------------------------------------
 total         34805261 (100.00%)      24888747677 (100.00%)    715.09
 ip            34716951 ( 99.75%)      24844584085 ( 99.82%)    715.63
  tcp          24707659 ( 70.99%)      19277773522 ( 77.46%)    780.23
   http(s)     10347688 ( 29.73%)      13560574197 ( 54.48%)   1310.49
   http(c)      7311961 ( 21.01%)       1231082087 (  4.95%)    168.37
   squid        1595559 (  4.58%)       1033455327 (  4.15%)    647.71
   smtp          548878 (  1.58%)        148843514 (  0.60%)    271.18
   nntp              44 (  0.00%)             4474 (  0.00%)    101.68
   ftp            28236 (  0.08%)          2723512 (  0.01%)     96.46
   pop3           54635 (  0.16%)         63963647 (  0.26%)   1170.74
   imap            4823 (  0.01%)           681858 (  0.00%)    141.38
   telnet          1692 (  0.00%)           123534 (  0.00%)     73.01
   ssh            89697 (  0.26%)         13294186 (  0.05%)    148.21
   dns             3135 (  0.01%)           249213 (  0.00%)     79.49
   bgp              188 (  0.00%)            85522 (  0.00%)    454.90
   napster           69 (  0.00%)             9243 (  0.00%)    133.96
   realaud           96 (  0.00%)            15184 (  0.00%)    158.17
   icecast        25135 (  0.07%)         16806614 (  0.07%)    668.65
   hotline            3 (  0.00%)              194 (  0.00%)     64.67
   other        4695818 ( 13.49%)       3205861096 ( 12.88%)    682.71
  udp           8978318 ( 25.80%)       5174136713 ( 20.79%)    576.29
   dns          1058286 (  3.04%)        204828306 (  0.82%)    193.55
   rip             2562 (  0.01%)          1585400 (  0.01%)    618.81
   realaud           45 (  0.00%)             7386 (  0.00%)    164.13
   halflif           76 (  0.00%)             9709 (  0.00%)    127.75
   starcra           48 (  0.00%)             6503 (  0.00%)    135.48
   everque        15573 (  0.04%)          3213253 (  0.01%)    206.33
   unreal            28 (  0.00%)             3428 (  0.00%)    122.43
   quake             27 (  0.00%)             2554 (  0.00%)     94.59
   cuseeme            5 (  0.00%)              390 (  0.00%)     78.00
   other        7901577 ( 22.70%)       4964429651 ( 19.95%)    628.28
  icmp           375616 (  1.08%)         31121570 (  0.13%)     82.85
  ipip              398 (  0.00%)            47596 (  0.00%)    119.59
  ipsec           20776 (  0.06%)          4159984 (  0.02%)    200.23
  ip6            633475 (  1.82%)        357244869 (  1.44%)    563.94
  other             709 (  0.00%)            99831 (  0.00%)    140.81
  frag              606 (  0.00%)           615637 (  0.00%)   1015.90
 ip6              88310 (  0.25%)         44163592 (  0.18%)    500.10
  tcp6            51009 (  0.15%)         32414986 (  0.13%)    635.48
   http(s)          874 (  0.00%)           956735 (  0.00%)   1094.66
   http(c)         1182 (  0.00%)           117689 (  0.00%)     99.57
   smtp             197 (  0.00%)            97602 (  0.00%)    495.44
   imap             276 (  0.00%)            31879 (  0.00%)    115.50
   ssh              126 (  0.00%)            35652 (  0.00%)    282.95
   dns              170 (  0.00%)            38205 (  0.00%)    224.74
   bgp              128 (  0.00%)            18851 (  0.00%)    147.27
   other          48056 (  0.14%)         31118373 (  0.13%)    647.54
  udp6            25684 (  0.07%)          6129772 (  0.02%)    238.66
   dns            16281 (  0.05%)          4081784 (  0.02%)    250.71
   other           9403 (  0.03%)          2047988 (  0.01%)    217.80
  icmp6            4973 (  0.01%)           941817 (  0.00%)    189.39
  pim6               30 (  0.00%)             4080 (  0.00%)    136.00
  other6           6614 (  0.02%)          4672937 (  0.02%)    706.52


tcpdump file: 201007291400.dump.gz (816.82 MB)