Traffic Trace Info
DumpFile: 201008111400.dump
FileSize: 2315.92MB
Id: 201008111400
StartTime: Wed Aug 11 14:00:00 2010
EndTime: Wed Aug 11 14:15:01 2010
TotalTime: 900.60 seconds
TotalCapSize: 1824.79MB CapLen: 96 bytes
# of packets: 32186723 (21329.48MB)
AvgRate: 198.65Mbps stddev:22.79M
IP flow (unique src/dst pair) Information
# of flows: 867473 (avg. 37.10 pkts/flow)
Top 10 big flow size (bytes/total in %):
7.3% 2.7% 2.0% 2.0% 1.1% 1.1% 1.1% 1.0% 0.7% 0.6%
IP address Information
# of IPv4 addresses: 497162
Top 10 bandwidth usage (bytes/total in %):
13.0% 12.1% 7.5% 7.2% 5.5% 5.0% 4.2% 3.3% 2.8% 2.7%
# of IPv6 addresses: 1997
Top 10 bandwidth usage (bytes/total in %):
30.5% 30.5% 19.7% 10.6% 5.7% 5.5% 5.5% 2.9% 2.9% 2.4%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](201008111400.pktlen.png)
detailed numbers
[ 32- 63]: 3957675
[ 64- 127]: 9994517
[ 128- 255]: 1912939
[ 256- 511]: 1632309
[ 512- 1023]: 1013907
[ 1024- 2047]: 13675376
Protocol Breakdown
![[protocol breakdown chart]](201008111400.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 32186723 (100.00%) 22365578016 (100.00%) 694.87
ip 32122688 ( 99.80%) 22341736706 ( 99.89%) 695.51
tcp 21080873 ( 65.50%) 16715808794 ( 74.74%) 792.94
http(s) 10125824 ( 31.46%) 13587018462 ( 60.75%) 1341.82
http(c) 6138186 ( 19.07%) 769614179 ( 3.44%) 125.38
squid 250190 ( 0.78%) 76596000 ( 0.34%) 306.15
smtp 324205 ( 1.01%) 142000733 ( 0.63%) 438.00
ftp 117311 ( 0.36%) 13369106 ( 0.06%) 113.96
pop3 7834 ( 0.02%) 3611883 ( 0.02%) 461.05
imap 9758 ( 0.03%) 1937061 ( 0.01%) 198.51
telnet 291 ( 0.00%) 19088 ( 0.00%) 65.59
ssh 826205 ( 2.57%) 142439000 ( 0.64%) 172.40
dns 2869 ( 0.01%) 250719 ( 0.00%) 87.39
bgp 176 ( 0.00%) 73345 ( 0.00%) 416.73
napster 549 ( 0.00%) 267338 ( 0.00%) 486.95
realaud 7 ( 0.00%) 539 ( 0.00%) 77.00
rtsp 6656 ( 0.02%) 7732655 ( 0.03%) 1161.76
icecast 880 ( 0.00%) 57137 ( 0.00%) 64.93
hotline 14 ( 0.00%) 1287 ( 0.00%) 91.93
other 3269911 ( 10.16%) 1970819842 ( 8.81%) 602.71
udp 7890940 ( 24.52%) 3982680090 ( 17.81%) 504.72
dns 999796 ( 3.11%) 209505959 ( 0.94%) 209.55
rip 2 ( 0.00%) 120 ( 0.00%) 60.00
realaud 925 ( 0.00%) 57409 ( 0.00%) 62.06
halflif 30 ( 0.00%) 3180 ( 0.00%) 106.00
starcra 21 ( 0.00%) 2738 ( 0.00%) 130.38
everque 446 ( 0.00%) 81282 ( 0.00%) 182.25
unreal 103 ( 0.00%) 14153 ( 0.00%) 137.41
quake 17 ( 0.00%) 1359 ( 0.00%) 79.94
cuseeme 2 ( 0.00%) 203 ( 0.00%) 101.50
other 6889498 ( 21.40%) 3772934521 ( 16.87%) 547.64
icmp 310419 ( 0.96%) 25454522 ( 0.11%) 82.00
ipip 346 ( 0.00%) 42772 ( 0.00%) 123.62
ipsec 551 ( 0.00%) 194162 ( 0.00%) 352.38
ip6 2839213 ( 8.82%) 1617517762 ( 7.23%) 569.71
other 346 ( 0.00%) 38604 ( 0.00%) 111.57
frag 603 ( 0.00%) 644889 ( 0.00%) 1069.47
ip6 64035 ( 0.20%) 23841310 ( 0.11%) 372.32
tcp6 32214 ( 0.10%) 16724997 ( 0.07%) 519.18
http(s) 630 ( 0.00%) 522872 ( 0.00%) 829.96
http(c) 3839 ( 0.01%) 338058 ( 0.00%) 88.06
smtp 8574 ( 0.03%) 7337544 ( 0.03%) 855.79
imap 371 ( 0.00%) 44157 ( 0.00%) 119.02
ssh 33 ( 0.00%) 9734 ( 0.00%) 294.97
dns 181 ( 0.00%) 21848 ( 0.00%) 120.71
bgp 374 ( 0.00%) 228415 ( 0.00%) 610.74
other 18212 ( 0.06%) 8222369 ( 0.04%) 451.48
udp6 25041 ( 0.08%) 5459714 ( 0.02%) 218.03
dns 18311 ( 0.06%) 4121207 ( 0.02%) 225.07
everque 1 ( 0.00%) 107 ( 0.00%) 107.00
other 6729 ( 0.02%) 1338400 ( 0.01%) 198.90
icmp6 5856 ( 0.02%) 1005274 ( 0.00%) 171.67
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
other6 894 ( 0.00%) 647245 ( 0.00%) 723.99
tcpdump file: 201008111400.dump.gz (833.62 MB)