Traffic Trace Info
DumpFile: 201008231400.dump
FileSize: 2484.03MB
Id: 201008231400
StartTime: Mon Aug 23 14:00:01 2010
EndTime: Mon Aug 23 14:15:01 2010
TotalTime: 899.32 seconds
TotalCapSize: 1946.41MB CapLen: 96 bytes
# of packets: 35233023 (22573.56MB)
AvgRate: 210.56Mbps stddev:17.69M
IP flow (unique src/dst pair) Information
# of flows: 927374 (avg. 37.99 pkts/flow)
Top 10 big flow size (bytes/total in %):
12.9% 6.4% 2.4% 2.0% 1.8% 1.3% 1.2% 1.1% 1.1% 1.0%
IP address Information
# of IPv4 addresses: 513294
Top 10 bandwidth usage (bytes/total in %):
13.0% 12.9% 12.2% 7.1% 6.6% 6.6% 5.3% 4.7% 4.5% 2.5%
# of IPv6 addresses: 2053
Top 10 bandwidth usage (bytes/total in %):
49.6% 47.7% 7.2% 7.1% 4.1% 3.9% 3.9% 3.4% 3.4% 3.1%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](201008231400.pktlen.png)
detailed numbers
[ 32- 63]: 6007926
[ 64- 127]: 7265095
[ 128- 255]: 1510255
[ 256- 511]: 1304878
[ 512- 1023]: 6219296
[ 1024- 2047]: 12925573
Protocol Breakdown
![[protocol breakdown chart]](201008231400.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 35233023 (100.00%) 23670091619 (100.00%) 671.82
ip 35153350 ( 99.77%) 23641116965 ( 99.88%) 672.51
tcp 20343177 ( 57.74%) 15382911813 ( 64.99%) 756.17
http(s) 7645447 ( 21.70%) 10125744897 ( 42.78%) 1324.42
http(c) 5584535 ( 15.85%) 713126213 ( 3.01%) 127.70
squid 234094 ( 0.66%) 84276284 ( 0.36%) 360.01
smtp 255715 ( 0.73%) 99618263 ( 0.42%) 389.57
ftp 40373 ( 0.11%) 20840797 ( 0.09%) 516.21
pop3 32376 ( 0.09%) 5129137 ( 0.02%) 158.42
imap 4757 ( 0.01%) 3649262 ( 0.02%) 767.14
telnet 400 ( 0.00%) 28368 ( 0.00%) 70.92
ssh 50398 ( 0.14%) 33349835 ( 0.14%) 661.73
dns 2677 ( 0.01%) 286710 ( 0.00%) 107.10
bgp 128 ( 0.00%) 52506 ( 0.00%) 410.20
napster 11 ( 0.00%) 1115 ( 0.00%) 101.36
realaud 49 ( 0.00%) 3902 ( 0.00%) 79.63
rtsp 5937 ( 0.02%) 4377632 ( 0.02%) 737.35
icecast 20826 ( 0.06%) 15554423 ( 0.07%) 746.88
hotline 8 ( 0.00%) 504 ( 0.00%) 63.00
other 6465444 ( 18.35%) 4276871835 ( 18.07%) 661.50
udp 11687631 ( 33.17%) 6378018973 ( 26.95%) 545.71
dns 6449552 ( 18.31%) 3246903932 ( 13.72%) 503.43
rip 4 ( 0.00%) 240 ( 0.00%) 60.00
realaud 53 ( 0.00%) 9596 ( 0.00%) 181.06
halflif 43 ( 0.00%) 4400 ( 0.00%) 102.33
starcra 36 ( 0.00%) 4143 ( 0.00%) 115.08
everque 423 ( 0.00%) 87091 ( 0.00%) 205.89
unreal 16 ( 0.00%) 1652 ( 0.00%) 103.25
quake 18 ( 0.00%) 1624 ( 0.00%) 90.22
cuseeme 6 ( 0.00%) 526 ( 0.00%) 87.67
other 5236077 ( 14.86%) 3130805298 ( 13.23%) 597.93
icmp 458643 ( 1.30%) 107409959 ( 0.45%) 234.19
ipip 401 ( 0.00%) 49628 ( 0.00%) 123.76
ipsec 5701 ( 0.02%) 2907150 ( 0.01%) 509.94
ip6 2657429 ( 7.54%) 1769776516 ( 7.48%) 665.97
other 368 ( 0.00%) 42926 ( 0.00%) 116.65
frag 5203 ( 0.01%) 4314404 ( 0.02%) 829.21
ip6 79673 ( 0.23%) 28974654 ( 0.12%) 363.67
tcp6 53602 ( 0.15%) 23390425 ( 0.10%) 436.37
http(s) 534 ( 0.00%) 473860 ( 0.00%) 887.38
http(c) 2089 ( 0.01%) 1107076 ( 0.00%) 529.96
smtp 305 ( 0.00%) 145457 ( 0.00%) 476.91
imap 250 ( 0.00%) 29911 ( 0.00%) 119.64
ssh 880 ( 0.00%) 349824 ( 0.00%) 397.53
dns 239 ( 0.00%) 31102 ( 0.00%) 130.13
bgp 92 ( 0.00%) 14386 ( 0.00%) 156.37
other 49213 ( 0.14%) 21238809 ( 0.09%) 431.57
udp6 20303 ( 0.06%) 4540147 ( 0.02%) 223.62
dns 14272 ( 0.04%) 3737261 ( 0.02%) 261.86
other 6031 ( 0.02%) 802886 ( 0.00%) 133.13
icmp6 5596 ( 0.02%) 899905 ( 0.00%) 160.81
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
other6 142 ( 0.00%) 140097 ( 0.00%) 986.60
tcpdump file: 201008231400.dump.gz (871.74 MB)