Traffic Trace Info
DumpFile: 201008211400.dump
FileSize: 2309.19MB
Id: 201008211400
StartTime: Sat Aug 21 14:00:01 2010
EndTime: Sat Aug 21 14:15:01 2010
TotalTime: 900.58 seconds
TotalCapSize: 1811.95MB CapLen: 96 bytes
# of packets: 32575764 (23227.37MB)
AvgRate: 216.34Mbps stddev:24.53M
IP flow (unique src/dst pair) Information
# of flows: 766886 (avg. 42.48 pkts/flow)
Top 10 big flow size (bytes/total in %):
2.1% 2.0% 1.8% 1.8% 1.6% 1.6% 1.1% 0.8% 0.8% 0.8%
IP address Information
# of IPv4 addresses: 451734
Top 10 bandwidth usage (bytes/total in %):
17.5% 11.2% 7.3% 6.9% 6.8% 6.1% 3.2% 2.5% 2.1% 2.0%
# of IPv6 addresses: 1901
Top 10 bandwidth usage (bytes/total in %):
24.8% 24.8% 16.9% 16.9% 7.3% 4.9% 3.9% 3.9% 3.9% 3.6%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](201008211400.pktlen.png)
detailed numbers
[ 32- 63]: 5684620
[ 64- 127]: 7784988
[ 128- 255]: 1487443
[ 256- 511]: 1530350
[ 512- 1023]: 870447
[ 1024- 2047]: 15217916
Protocol Breakdown
![[protocol breakdown chart]](201008211400.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 32575764 (100.00%) 24355667727 (100.00%) 747.66
ip 32516856 ( 99.82%) 24336884640 ( 99.92%) 748.44
tcp 22972701 ( 70.52%) 19229618348 ( 78.95%) 837.06
http(s) 12353172 ( 37.92%) 15720031951 ( 64.54%) 1272.55
http(c) 5063957 ( 15.55%) 698889251 ( 2.87%) 138.01
squid 243954 ( 0.75%) 106289722 ( 0.44%) 435.70
smtp 218230 ( 0.67%) 46173240 ( 0.19%) 211.58
ftp 24880 ( 0.08%) 2888085 ( 0.01%) 116.08
pop3 3705 ( 0.01%) 953508 ( 0.00%) 257.36
imap 1864 ( 0.01%) 683972 ( 0.00%) 366.94
telnet 759 ( 0.00%) 51698 ( 0.00%) 68.11
ssh 1364313 ( 4.19%) 208556063 ( 0.86%) 152.87
dns 1950 ( 0.01%) 254886 ( 0.00%) 130.71
bgp 124 ( 0.00%) 47004 ( 0.00%) 379.06
napster 3026 ( 0.01%) 2127613 ( 0.01%) 703.11
realaud 21 ( 0.00%) 4268 ( 0.00%) 203.24
rtsp 6617 ( 0.02%) 7701424 ( 0.03%) 1163.88
icecast 1127 ( 0.00%) 71196 ( 0.00%) 63.17
hotline 10 ( 0.00%) 1253 ( 0.00%) 125.30
other 3684992 ( 11.31%) 2434893214 ( 10.00%) 660.76
udp 6308586 ( 19.37%) 3273191615 ( 13.44%) 518.85
dns 801223 ( 2.46%) 163701675 ( 0.67%) 204.31
rip 1 ( 0.00%) 60 ( 0.00%) 60.00
realaud 32 ( 0.00%) 3869 ( 0.00%) 120.91
halflif 30 ( 0.00%) 2543 ( 0.00%) 84.77
starcra 17 ( 0.00%) 1943 ( 0.00%) 114.29
everque 338 ( 0.00%) 80428 ( 0.00%) 237.95
unreal 49 ( 0.00%) 8643 ( 0.00%) 176.39
quake 26 ( 0.00%) 2381 ( 0.00%) 91.58
cuseeme 2 ( 0.00%) 153 ( 0.00%) 76.50
other 5506733 ( 16.90%) 3109284276 ( 12.77%) 564.63
icmp 509179 ( 1.56%) 110307753 ( 0.45%) 216.64
ipip 379 ( 0.00%) 45992 ( 0.00%) 121.35
ipsec 35008 ( 0.11%) 31925368 ( 0.13%) 911.94
ip6 2690394 ( 8.26%) 1691708580 ( 6.95%) 628.80
other 609 ( 0.00%) 86984 ( 0.00%) 142.83
frag 584 ( 0.00%) 644246 ( 0.00%) 1103.16
ip6 58908 ( 0.18%) 18783087 ( 0.08%) 318.85
tcp6 36821 ( 0.11%) 14259698 ( 0.06%) 387.27
http(s) 576 ( 0.00%) 535846 ( 0.00%) 930.29
http(c) 2156 ( 0.01%) 273345 ( 0.00%) 126.78
squid 3 ( 0.00%) 254 ( 0.00%) 84.67
smtp 459 ( 0.00%) 136712 ( 0.00%) 297.85
imap 280 ( 0.00%) 32312 ( 0.00%) 115.40
ssh 6 ( 0.00%) 804 ( 0.00%) 134.00
dns 269 ( 0.00%) 30618 ( 0.00%) 113.82
bgp 89 ( 0.00%) 12333 ( 0.00%) 138.57
other 32983 ( 0.10%) 13237474 ( 0.05%) 401.34
udp6 16168 ( 0.05%) 3428311 ( 0.01%) 212.04
dns 10600 ( 0.03%) 2724138 ( 0.01%) 256.99
other 5568 ( 0.02%) 704173 ( 0.00%) 126.47
icmp6 5776 ( 0.02%) 976967 ( 0.00%) 169.14
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
other6 113 ( 0.00%) 114031 ( 0.00%) 1009.12
tcpdump file: 201008211400.dump.gz (828.67 MB)