Traffic Trace Info
DumpFile: 201009191400.dump
FileSize: 1947.69MB
Id: 201009191400
StartTime: Sun Sep 19 14:00:01 2010
EndTime: Sun Sep 19 14:15:01 2010
TotalTime: 900.12 seconds
TotalCapSize: 1530.89MB CapLen: 96 bytes
# of packets: 27314696 (19784.36MB)
AvgRate: 184.37Mbps stddev:23.93M
IP flow (unique src/dst pair) Information
# of flows: 806371 (avg. 33.87 pkts/flow)
Top 10 big flow size (bytes/total in %):
2.0% 1.8% 1.3% 1.3% 1.1% 1.0% 1.0% 1.0% 1.0% 0.9%
IP address Information
# of IPv4 addresses: 480084
Top 10 bandwidth usage (bytes/total in %):
13.6% 9.9% 7.9% 5.3% 3.6% 2.9% 2.9% 2.3% 2.2% 2.1%
# of IPv6 addresses: 2149
Top 10 bandwidth usage (bytes/total in %):
23.0% 23.0% 19.2% 17.0% 17.0% 7.2% 5.2% 3.9% 3.8% 3.6%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](201009191400.pktlen.png)
detailed numbers
[ 32- 63]: 3488053
[ 64- 127]: 7536688
[ 128- 255]: 1378660
[ 256- 511]: 1142366
[ 512- 1023]: 730938
[ 1024- 2047]: 13037991
Protocol Breakdown
![[protocol breakdown chart]](201009191400.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 27314696 (100.00%) 20745401872 (100.00%) 759.50
ip 27209843 ( 99.62%) 20707999841 ( 99.82%) 761.05
tcp 16614879 ( 60.83%) 15037035193 ( 72.48%) 905.03
http(s) 8282860 ( 30.32%) 11313454148 ( 54.53%) 1365.89
http(c) 4039505 ( 14.79%) 476320373 ( 2.30%) 117.92
squid 218140 ( 0.80%) 93331484 ( 0.45%) 427.85
smtp 190100 ( 0.70%) 58910415 ( 0.28%) 309.89
nntp 1 ( 0.00%) 60 ( 0.00%) 60.00
ftp 34906 ( 0.13%) 3079774 ( 0.01%) 88.23
pop3 14682 ( 0.05%) 13534104 ( 0.07%) 921.82
imap 1898 ( 0.01%) 571273 ( 0.00%) 300.99
telnet 613 ( 0.00%) 42212 ( 0.00%) 68.86
ssh 355549 ( 1.30%) 76686007 ( 0.37%) 215.68
dns 2906 ( 0.01%) 292611 ( 0.00%) 100.69
bgp 148 ( 0.00%) 61591 ( 0.00%) 416.16
napster 50 ( 0.00%) 5628 ( 0.00%) 112.56
realaud 127 ( 0.00%) 16452 ( 0.00%) 129.54
rtsp 37951 ( 0.14%) 28280947 ( 0.14%) 745.20
icecast 10657 ( 0.04%) 9073464 ( 0.04%) 851.41
hotline 7 ( 0.00%) 1074 ( 0.00%) 153.43
other 3424778 ( 12.54%) 2963373516 ( 14.28%) 865.27
udp 7636626 ( 27.96%) 3903664928 ( 18.82%) 511.18
dns 1244079 ( 4.55%) 191838547 ( 0.92%) 154.20
realaud 11 ( 0.00%) 900 ( 0.00%) 81.82
halflif 29 ( 0.00%) 2338 ( 0.00%) 80.62
starcra 9 ( 0.00%) 1094 ( 0.00%) 121.56
everque 233 ( 0.00%) 45422 ( 0.00%) 194.94
unreal 105 ( 0.00%) 9784 ( 0.00%) 93.18
quake 18 ( 0.00%) 2204 ( 0.00%) 122.44
cuseeme 6 ( 0.00%) 874 ( 0.00%) 145.67
other 6392073 ( 23.40%) 3711713464 ( 17.89%) 580.67
icmp 396287 ( 1.45%) 103668747 ( 0.50%) 261.60
ipip 165 ( 0.00%) 20246 ( 0.00%) 122.70
ipsec 11186 ( 0.04%) 1524020 ( 0.01%) 136.24
ip6 2545076 ( 9.32%) 1661371259 ( 8.01%) 652.78
other 5624 ( 0.02%) 715448 ( 0.00%) 127.21
frag 411 ( 0.00%) 442466 ( 0.00%) 1076.56
ip6 104853 ( 0.38%) 37402031 ( 0.18%) 356.71
tcp6 41116 ( 0.15%) 14596067 ( 0.07%) 355.00
http(s) 512 ( 0.00%) 381543 ( 0.00%) 745.20
http(c) 1867 ( 0.01%) 278100 ( 0.00%) 148.96
smtp 501 ( 0.00%) 114068 ( 0.00%) 227.68
dns 14 ( 0.00%) 3986 ( 0.00%) 284.71
bgp 89 ( 0.00%) 14913 ( 0.00%) 167.56
other 38133 ( 0.14%) 13803457 ( 0.07%) 361.98
udp6 39480 ( 0.14%) 10614343 ( 0.05%) 268.85
dns 34669 ( 0.13%) 9727407 ( 0.05%) 280.58
other 4811 ( 0.02%) 886936 ( 0.00%) 184.36
icmp6 8896 ( 0.03%) 1290264 ( 0.01%) 145.04
ip6 82 ( 0.00%) 11176 ( 0.00%) 136.29
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
other6 15249 ( 0.06%) 10886101 ( 0.05%) 713.89
tcpdump file: 201009191400.dump.gz (688.74 MB)