Traffic Trace Info
DumpFile: 201009101400.dump
FileSize: 2725.06MB
Id: 201009101400
StartTime: Fri Sep 10 14:00:00 2010
EndTime: Fri Sep 10 14:15:01 2010
TotalTime: 900.62 seconds
TotalCapSize: -1943.64MB CapLen: 96 bytes
# of packets: 37531772 (28852.07MB)
AvgRate: 268.74Mbps stddev:25.76M
IP flow (unique src/dst pair) Information
# of flows: 1277248 (avg. 29.38 pkts/flow)
Top 10 big flow size (bytes/total in %):
6.6% 4.4% 4.0% 3.5% 2.6% 1.5% 1.5% 1.4% 1.3% 1.0%
IP address Information
# of IPv4 addresses: 846830
Top 10 bandwidth usage (bytes/total in %):
11.1% 9.5% 7.8% 6.7% 6.7% 5.8% 4.6% 4.5% 4.4% 4.0%
# of IPv6 addresses: 2189
Top 10 bandwidth usage (bytes/total in %):
81.0% 81.0% 6.2% 6.2% 2.4% 1.7% 1.7% 1.7% 1.7% 1.0%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](201009101400.pktlen.png)
detailed numbers
[ 32- 63]: 5158354
[ 64- 127]: 9452857
[ 128- 255]: 1477448
[ 256- 511]: 1472087
[ 512- 1023]: 933527
[ 1024- 2047]: 19037499
Protocol Breakdown
![[protocol breakdown chart]](201009101400.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 37531772 (100.00%) 30253587851 (100.00%) 806.08
ip 37201709 ( 99.12%) 29993754418 ( 99.14%) 806.25
tcp 26451264 ( 70.48%) 24541233070 ( 81.12%) 927.79
http(s) 13540542 ( 36.08%) 18638937398 ( 61.61%) 1376.53
http(c) 6728150 ( 17.93%) 1443398178 ( 4.77%) 214.53
squid 177215 ( 0.47%) 76591937 ( 0.25%) 432.20
smtp 256606 ( 0.68%) 64263940 ( 0.21%) 250.44
ftp 10875 ( 0.03%) 1412333 ( 0.00%) 129.87
pop3 18010 ( 0.05%) 10837405 ( 0.04%) 601.74
imap 4193 ( 0.01%) 1558401 ( 0.01%) 371.67
telnet 2061 ( 0.01%) 146636 ( 0.00%) 71.15
ssh 36297 ( 0.10%) 6846337 ( 0.02%) 188.62
dns 3773 ( 0.01%) 349354 ( 0.00%) 92.59
bgp 179 ( 0.00%) 87165 ( 0.00%) 486.96
napster 19 ( 0.00%) 2446 ( 0.00%) 128.74
realaud 59 ( 0.00%) 8539 ( 0.00%) 144.73
rtsp 26511 ( 0.07%) 24227407 ( 0.08%) 913.86
icecast 39222 ( 0.10%) 31274359 ( 0.10%) 797.37
hotline 6 ( 0.00%) 776 ( 0.00%) 129.33
other 5607543 ( 14.94%) 4241290267 ( 14.02%) 756.35
udp 7420527 ( 19.77%) 3571056067 ( 11.80%) 481.24
dns 1358239 ( 3.62%) 216224353 ( 0.71%) 159.19
realaud 29 ( 0.00%) 5894 ( 0.00%) 203.24
halflif 47 ( 0.00%) 4663 ( 0.00%) 99.21
starcra 21 ( 0.00%) 3348 ( 0.00%) 159.43
everque 8280 ( 0.02%) 936969 ( 0.00%) 113.16
unreal 30 ( 0.00%) 3479 ( 0.00%) 115.97
quake 35 ( 0.00%) 2736 ( 0.00%) 78.17
cuseeme 12 ( 0.00%) 943 ( 0.00%) 78.58
other 6053780 ( 16.13%) 3353824301 ( 11.09%) 554.00
icmp 616333 ( 1.64%) 139757893 ( 0.46%) 226.76
ipip 167 ( 0.00%) 19302 ( 0.00%) 115.58
ipsec 13764 ( 0.04%) 1890816 ( 0.01%) 137.37
ip6 2698652 ( 7.19%) 1739638554 ( 5.75%) 644.63
other 1002 ( 0.00%) 158716 ( 0.00%) 158.40
frag 360 ( 0.00%) 383752 ( 0.00%) 1065.98
ip6 330063 ( 0.88%) 259833433 ( 0.86%) 787.22
tcp6 278779 ( 0.74%) 247466527 ( 0.82%) 887.68
http(s) 763 ( 0.00%) 632842 ( 0.00%) 829.41
http(c) 2277 ( 0.01%) 323505 ( 0.00%) 142.08
squid 22 ( 0.00%) 3410 ( 0.00%) 155.00
smtp 368 ( 0.00%) 184082 ( 0.00%) 500.22
dns 49 ( 0.00%) 14827 ( 0.00%) 302.59
bgp 93 ( 0.00%) 14720 ( 0.00%) 158.28
other 275207 ( 0.73%) 246293141 ( 0.81%) 894.94
udp6 41037 ( 0.11%) 10562392 ( 0.03%) 257.39
dns 38186 ( 0.10%) 10116217 ( 0.03%) 264.92
everque 2 ( 0.00%) 193 ( 0.00%) 96.50
other 2849 ( 0.01%) 445982 ( 0.00%) 156.54
icmp6 9899 ( 0.03%) 1519078 ( 0.01%) 153.46
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
other6 318 ( 0.00%) 281356 ( 0.00%) 884.77
tcpdump file: 201009101400.dump.gz (930.07 MB)