Traffic Trace Info
DumpFile: 201103091400.dump
FileSize: 2784.21MB
Id: 201103091400
StartTime: Wed Mar 9 14:00:01 2011
EndTime: Wed Mar 9 14:15:01 2011
TotalTime: 899.93 seconds
TotalCapSize: -1918.09MB CapLen: 96 bytes
# of packets: 39733420 (30087.03MB)
AvgRate: 280.40Mbps stddev:38.37M
IP flow (unique src/dst pair) Information
# of flows: 894944 (avg. 44.40 pkts/flow)
Top 10 big flow size (bytes/total in %):
24.0% 2.0% 1.7% 1.0% 0.8% 0.7% 0.6% 0.6% 0.6% 0.5%
IP address Information
# of IPv4 addresses: 484844
Top 10 bandwidth usage (bytes/total in %):
24.3% 24.3% 10.3% 4.0% 2.8% 2.5% 2.5% 2.3% 2.1% 2.1%
# of IPv6 addresses: 4380
Top 10 bandwidth usage (bytes/total in %):
22.0% 22.0% 18.4% 17.5% 7.8% 6.3% 6.2% 4.7% 4.7% 4.6%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](201103091400.pktlen.png)
detailed numbers
[ 32- 63]: 8053305
[ 64- 127]: 8367192
[ 128- 255]: 1344179
[ 256- 511]: 1203600
[ 512- 1023]: 1204632
[ 1024- 2047]: 19560512
Protocol Breakdown
![[protocol breakdown chart]](201103091400.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 39733420 (100.00%) 31548542720 (100.00%) 794.01
ip 39595416 ( 99.65%) 31479117471 ( 99.78%) 795.02
tcp 33787774 ( 85.04%) 28897836776 ( 91.60%) 855.27
http(s) 14324363 ( 36.05%) 17896731126 ( 56.73%) 1249.39
http(c) 13930059 ( 35.06%) 8920109871 ( 28.27%) 640.35
squid 367691 ( 0.93%) 111645482 ( 0.35%) 303.64
smtp 176288 ( 0.44%) 83610843 ( 0.27%) 474.29
nntp 12 ( 0.00%) 756 ( 0.00%) 63.00
ftp 43528 ( 0.11%) 4634278 ( 0.01%) 106.47
pop3 32750 ( 0.08%) 28137952 ( 0.09%) 859.17
imap 53292 ( 0.13%) 67751762 ( 0.21%) 1271.33
telnet 776 ( 0.00%) 56156 ( 0.00%) 72.37
ssh 773055 ( 1.95%) 117256776 ( 0.37%) 151.68
dns 15360 ( 0.04%) 1571687 ( 0.00%) 102.32
bgp 638 ( 0.00%) 103000 ( 0.00%) 161.44
napster 95 ( 0.00%) 13488 ( 0.00%) 141.98
realaud 68 ( 0.00%) 7576 ( 0.00%) 111.41
rtsp 1033 ( 0.00%) 70484 ( 0.00%) 68.23
icecast 9287 ( 0.02%) 1336082 ( 0.00%) 143.87
hotline 441 ( 0.00%) 27273 ( 0.00%) 61.84
other 4059037 ( 10.22%) 1664772102 ( 5.28%) 410.14
udp 4873691 ( 12.27%) 2343886609 ( 7.43%) 480.93
dns 899735 ( 2.26%) 193523316 ( 0.61%) 215.09
realaud 45 ( 0.00%) 6623 ( 0.00%) 147.18
halflif 26 ( 0.00%) 2207 ( 0.00%) 84.88
starcra 91 ( 0.00%) 11184 ( 0.00%) 122.90
everque 472 ( 0.00%) 100911 ( 0.00%) 213.79
unreal 40 ( 0.00%) 6964 ( 0.00%) 174.10
quake 29 ( 0.00%) 3276 ( 0.00%) 112.97
cuseeme 9 ( 0.00%) 1205 ( 0.00%) 133.89
other 3973153 ( 10.00%) 2150175860 ( 6.82%) 541.18
icmp 460424 ( 1.16%) 92946105 ( 0.29%) 201.87
ipip 185 ( 0.00%) 19270 ( 0.00%) 104.16
ipsec 3839 ( 0.01%) 1496592 ( 0.00%) 389.84
ip6 448348 ( 1.13%) 136542792 ( 0.43%) 304.55
other 21155 ( 0.05%) 6389327 ( 0.02%) 302.02
frag 817 ( 0.00%) 859616 ( 0.00%) 1052.16
ip6 138004 ( 0.35%) 69425249 ( 0.22%) 503.07
tcp6 66762 ( 0.17%) 48489898 ( 0.15%) 726.31
http(s) 18824 ( 0.05%) 18297308 ( 0.06%) 972.02
http(c) 2847 ( 0.01%) 366778 ( 0.00%) 128.83
squid 25 ( 0.00%) 2114 ( 0.00%) 84.56
smtp 817 ( 0.00%) 151242 ( 0.00%) 185.12
ftp 708 ( 0.00%) 350129 ( 0.00%) 494.53
ssh 751 ( 0.00%) 143954 ( 0.00%) 191.68
dns 1656 ( 0.00%) 411218 ( 0.00%) 248.32
bgp 142 ( 0.00%) 21728 ( 0.00%) 153.01
other 40992 ( 0.10%) 28745427 ( 0.09%) 701.24
udp6 48797 ( 0.12%) 17344591 ( 0.05%) 355.44
dns 43467 ( 0.11%) 16492118 ( 0.05%) 379.42
halflif 1 ( 0.00%) 105 ( 0.00%) 105.00
other 5329 ( 0.01%) 852368 ( 0.00%) 159.95
icmp6 20368 ( 0.05%) 2136990 ( 0.01%) 104.92
ip6 80 ( 0.00%) 10940 ( 0.00%) 136.75
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
other6 1967 ( 0.00%) 1438750 ( 0.00%) 731.44
tcpdump file: 201103091400.dump.gz (927.35 MB)