Traffic Trace Info
DumpFile: 201010261400.dump
FileSize: 2644.31MB
Id: 201010261400
StartTime: Tue Oct 26 14:00:01 2010
EndTime: Tue Oct 26 14:15:01 2010
TotalTime: 899.51 seconds
TotalCapSize: -2012.45MB CapLen: 96 bytes
# of packets: 36749476 (25430.99MB)
AvgRate: 237.13Mbps stddev:30.50M
IP flow (unique src/dst pair) Information
# of flows: 1022487 (avg. 35.94 pkts/flow)
Top 10 big flow size (bytes/total in %):
2.9% 1.6% 1.4% 1.2% 1.1% 1.0% 0.9% 0.9% 0.8% 0.8%
IP address Information
# of IPv4 addresses: 591486
Top 10 bandwidth usage (bytes/total in %):
12.7% 10.5% 7.5% 3.4% 2.9% 2.9% 2.0% 1.9% 1.7% 1.7%
# of IPv6 addresses: 3773
Top 10 bandwidth usage (bytes/total in %):
25.0% 25.0% 24.7% 16.4% 16.1% 16.1% 5.4% 3.2% 3.2% 2.8%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](201010261400.pktlen.png)
detailed numbers
[ 32- 63]: 6134571
[ 64- 127]: 9221912
[ 128- 255]: 2173575
[ 256- 511]: 1529257
[ 512- 1023]: 901775
[ 1024- 2047]: 16788386
Protocol Breakdown
![[protocol breakdown chart]](201010261400.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 36749476 (100.00%) 26666324568 (100.00%) 725.62
ip 36589253 ( 99.56%) 26570490456 ( 99.64%) 726.18
tcp 24248236 ( 65.98%) 19446824450 ( 72.93%) 801.99
http(s) 12065718 ( 32.83%) 15681646171 ( 58.81%) 1299.69
http(c) 8018808 ( 21.82%) 1280712140 ( 4.80%) 159.71
squid 229388 ( 0.62%) 101915942 ( 0.38%) 444.30
smtp 211587 ( 0.58%) 69259743 ( 0.26%) 327.33
ftp 16000 ( 0.04%) 3185270 ( 0.01%) 199.08
pop3 9384 ( 0.03%) 5366256 ( 0.02%) 571.85
imap 1663 ( 0.00%) 304300 ( 0.00%) 182.98
telnet 877 ( 0.00%) 57879 ( 0.00%) 66.00
ssh 212835 ( 0.58%) 112612260 ( 0.42%) 529.11
dns 5943 ( 0.02%) 634428 ( 0.00%) 106.75
bgp 327 ( 0.00%) 84813 ( 0.00%) 259.37
napster 8 ( 0.00%) 906 ( 0.00%) 113.25
realaud 104 ( 0.00%) 13719 ( 0.00%) 131.91
rtsp 91064 ( 0.25%) 87453967 ( 0.33%) 960.36
icecast 19274 ( 0.05%) 3146813 ( 0.01%) 163.27
hotline 2 ( 0.00%) 124 ( 0.00%) 62.00
other 3365251 ( 9.16%) 2100429539 ( 7.88%) 624.15
udp 7854605 ( 21.37%) 4238881021 ( 15.90%) 539.67
dns 1307371 ( 3.56%) 191011097 ( 0.72%) 146.10
realaud 12 ( 0.00%) 1335 ( 0.00%) 111.25
halflif 79 ( 0.00%) 10156 ( 0.00%) 128.56
starcra 190 ( 0.00%) 99818 ( 0.00%) 525.36
everque 509 ( 0.00%) 81647 ( 0.00%) 160.41
unreal 14 ( 0.00%) 1705 ( 0.00%) 121.79
quake 80 ( 0.00%) 6767 ( 0.00%) 84.59
cuseeme 6 ( 0.00%) 746 ( 0.00%) 124.33
other 6546239 ( 17.81%) 4047578326 ( 15.18%) 618.31
icmp 435912 ( 1.19%) 78602239 ( 0.29%) 180.32
ipip 180 ( 0.00%) 18720 ( 0.00%) 104.00
ipsec 4917 ( 0.01%) 2505230 ( 0.01%) 509.50
ip6 4030626 ( 10.97%) 2801053157 ( 10.50%) 694.94
other 14777 ( 0.04%) 2605639 ( 0.01%) 176.33
frag 740 ( 0.00%) 812875 ( 0.00%) 1098.48
ip6 160223 ( 0.44%) 95834112 ( 0.36%) 598.13
tcp6 107511 ( 0.29%) 82567039 ( 0.31%) 767.99
http(s) 5903 ( 0.02%) 7005266 ( 0.03%) 1186.73
http(c) 11628 ( 0.03%) 1099186 ( 0.00%) 94.53
smtp 1013 ( 0.00%) 572794 ( 0.00%) 565.44
ftp 60 ( 0.00%) 5371 ( 0.00%) 89.52
ssh 1155 ( 0.00%) 1655834 ( 0.01%) 1433.62
dns 172 ( 0.00%) 40530 ( 0.00%) 235.64
bgp 93 ( 0.00%) 22929 ( 0.00%) 246.55
other 87487 ( 0.24%) 72165129 ( 0.27%) 824.87
udp6 40216 ( 0.11%) 11173341 ( 0.04%) 277.83
dns 36067 ( 0.10%) 10418855 ( 0.04%) 288.88
other 4149 ( 0.01%) 754486 ( 0.00%) 181.85
icmp6 12114 ( 0.03%) 1773287 ( 0.01%) 146.38
pim6 31 ( 0.00%) 4216 ( 0.00%) 136.00
other6 351 ( 0.00%) 316229 ( 0.00%) 900.94
tcpdump file: 201010261400.dump.gz (906.64 MB)