Traffic Trace Info
DumpFile: 201007311400.dump
FileSize: 2237.99MB
Id: 201007311400
StartTime: Sat Jul 31 14:00:01 2010
EndTime: Sat Jul 31 14:15:00 2010
TotalTime: 899.16 seconds
TotalCapSize: 1757.73MB CapLen: 96 bytes
# of packets: 31473196 (21048.00MB)
AvgRate: 196.34Mbps stddev:17.38M
IP flow (unique src/dst pair) Information
# of flows: 827405 (avg. 38.04 pkts/flow)
Top 10 big flow size (bytes/total in %):
3.4% 3.0% 2.0% 1.3% 1.2% 1.1% 1.0% 1.0% 1.0% 1.0%
IP address Information
# of IPv4 addresses: 482678
Top 10 bandwidth usage (bytes/total in %):
14.8% 8.9% 8.4% 7.1% 4.2% 3.6% 3.5% 3.2% 3.1% 2.6%
# of IPv6 addresses: 1917
Top 10 bandwidth usage (bytes/total in %):
24.5% 24.5% 20.5% 20.5% 18.6% 18.6% 15.4% 15.2% 5.3% 5.3%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](201007311400.pktlen.png)
detailed numbers
[ 32- 63]: 4927721
[ 64- 127]: 8570278
[ 128- 255]: 1986857
[ 256- 511]: 1547453
[ 512- 1023]: 765453
[ 1024- 2047]: 13675434
Protocol Breakdown
![[protocol breakdown chart]](201007311400.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 31473196 (100.00%) 22070429146 (100.00%) 701.25
ip 31200009 ( 99.13%) 21882131434 ( 99.15%) 701.35
tcp 19732269 ( 62.70%) 15906153020 ( 72.07%) 806.10
http(s) 9122732 ( 28.99%) 12445057425 ( 56.39%) 1364.18
http(c) 5530571 ( 17.57%) 644998531 ( 2.92%) 116.62
squid 691133 ( 2.20%) 313916326 ( 1.42%) 454.21
smtp 486800 ( 1.55%) 127798627 ( 0.58%) 262.53
nntp 22 ( 0.00%) 1885 ( 0.00%) 85.68
ftp 31801 ( 0.10%) 5006960 ( 0.02%) 157.45
pop3 5847 ( 0.02%) 2290736 ( 0.01%) 391.78
imap 3574 ( 0.01%) 2712092 ( 0.01%) 758.84
telnet 2592 ( 0.01%) 180447 ( 0.00%) 69.62
ssh 147771 ( 0.47%) 59648632 ( 0.27%) 403.66
dns 2648 ( 0.01%) 224487 ( 0.00%) 84.78
bgp 166 ( 0.00%) 60701 ( 0.00%) 365.67
napster 229 ( 0.00%) 18622 ( 0.00%) 81.32
realaud 64 ( 0.00%) 7815 ( 0.00%) 122.11
rtsp 12210 ( 0.04%) 11749259 ( 0.05%) 962.27
icecast 34307 ( 0.11%) 16702574 ( 0.08%) 486.86
hotline 3 ( 0.00%) 186 ( 0.00%) 62.00
other 3659789 ( 11.63%) 2275777115 ( 10.31%) 621.83
udp 7782862 ( 24.73%) 4084354910 ( 18.51%) 524.79
dns 767356 ( 2.44%) 139107719 ( 0.63%) 181.28
rip 1 ( 0.00%) 60 ( 0.00%) 60.00
realaud 25 ( 0.00%) 2890 ( 0.00%) 115.60
halflif 51 ( 0.00%) 5355 ( 0.00%) 105.00
starcra 44 ( 0.00%) 5620 ( 0.00%) 127.73
everque 526 ( 0.00%) 114986 ( 0.00%) 218.60
unreal 24 ( 0.00%) 3248 ( 0.00%) 135.33
quake 12 ( 0.00%) 1093 ( 0.00%) 91.08
cuseeme 4 ( 0.00%) 327 ( 0.00%) 81.75
other 7014407 ( 22.29%) 3944866661 ( 17.87%) 562.39
icmp 350916 ( 1.11%) 35599667 ( 0.16%) 101.45
ipip 346 ( 0.00%) 42718 ( 0.00%) 123.46
ipsec 8189 ( 0.03%) 3041470 ( 0.01%) 371.41
ip6 3323609 ( 10.56%) 1852648119 ( 8.39%) 557.42
other 1818 ( 0.01%) 291530 ( 0.00%) 160.36
frag 5374 ( 0.02%) 6061849 ( 0.03%) 1128.00
ip6 273187 ( 0.87%) 188297712 ( 0.85%) 689.26
tcp6 107674 ( 0.34%) 94882204 ( 0.43%) 881.20
http(s) 317 ( 0.00%) 199780 ( 0.00%) 630.22
http(c) 856 ( 0.00%) 95171 ( 0.00%) 111.18
squid 1 ( 0.00%) 82 ( 0.00%) 82.00
smtp 176 ( 0.00%) 54159 ( 0.00%) 307.72
imap 364 ( 0.00%) 44395 ( 0.00%) 121.96
ssh 1798 ( 0.01%) 154712 ( 0.00%) 86.05
dns 130 ( 0.00%) 18267 ( 0.00%) 140.52
bgp 111 ( 0.00%) 14653 ( 0.00%) 132.01
other 103921 ( 0.33%) 94300985 ( 0.43%) 907.43
udp6 42391 ( 0.13%) 9676398 ( 0.04%) 228.27
dns 13890 ( 0.04%) 3252252 ( 0.01%) 234.14
starcra 1 ( 0.00%) 168 ( 0.00%) 168.00
other 28500 ( 0.09%) 6423978 ( 0.03%) 225.40
icmp6 5093 ( 0.02%) 884716 ( 0.00%) 173.71
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
other6 117999 ( 0.37%) 82850314 ( 0.38%) 702.13
tcpdump file: 201007311400.dump.gz (793.62 MB)