Traffic Trace Info
DumpFile: 201109081400.dump
FileSize: 2077.61MB
Id: 201109081400
StartTime: Thu Sep 8 14:00:01 2011
EndTime: Thu Sep 8 14:15:00 2011
TotalTime: 899.18 seconds
TotalCapSize: 1632.03MB CapLen: 96 bytes
# of packets: 29200395 (21471.14MB)
AvgRate: 200.34Mbps stddev:49.55M
IP flow (unique src/dst pair) Information
# of flows: 864632 (avg. 33.77 pkts/flow)
Top 10 big flow size (bytes/total in %):
4.5% 2.0% 1.7% 1.6% 1.2% 1.2% 1.2% 1.1% 1.0% 1.0%
IP address Information
# of IPv4 addresses: 467358
Top 10 bandwidth usage (bytes/total in %):
8.4% 7.8% 6.3% 6.1% 4.5% 4.5% 3.8% 3.8% 3.7% 2.5%
# of IPv6 addresses: 3878
Top 10 bandwidth usage (bytes/total in %):
32.8% 31.4% 19.1% 14.2% 12.5% 3.7% 3.4% 3.4% 3.3% 2.9%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](201109081400.pktlen.png)
detailed numbers
[ 32- 63]: 5635374
[ 64- 127]: 6795831
[ 128- 255]: 1265808
[ 256- 511]: 644163
[ 512- 1023]: 782399
[ 1024- 2047]: 14076820
Protocol Breakdown
![[protocol breakdown chart]](201109081400.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 29200395 (100.00%) 22514121643 (100.00%) 771.02
ip 29028216 ( 99.41%) 22434928136 ( 99.65%) 772.87
tcp 24097928 ( 82.53%) 20025682283 ( 88.95%) 831.01
http(s) 11657959 ( 39.92%) 15893284973 ( 70.59%) 1363.30
http(c) 6326437 ( 21.67%) 1469313690 ( 6.53%) 232.25
squid 64794 ( 0.22%) 42288923 ( 0.19%) 652.67
smtp 192801 ( 0.66%) 135420127 ( 0.60%) 702.38
nntp 3 ( 0.00%) 194 ( 0.00%) 64.67
ftp 68673 ( 0.24%) 42085242 ( 0.19%) 612.84
pop3 13352 ( 0.05%) 1748540 ( 0.01%) 130.96
imap 8424 ( 0.03%) 5862644 ( 0.03%) 695.95
telnet 1074 ( 0.00%) 135258 ( 0.00%) 125.94
ssh 56657 ( 0.19%) 8681574 ( 0.04%) 153.23
dns 14477 ( 0.05%) 2898969 ( 0.01%) 200.25
bgp 641 ( 0.00%) 116481 ( 0.00%) 181.72
napster 184 ( 0.00%) 11938 ( 0.00%) 64.88
realaud 64 ( 0.00%) 4262 ( 0.00%) 66.59
rtsp 42145 ( 0.14%) 44211872 ( 0.20%) 1049.04
icecast 982 ( 0.00%) 266745 ( 0.00%) 271.63
hotline 34 ( 0.00%) 2524 ( 0.00%) 74.24
other 5649223 ( 19.35%) 2379348087 ( 10.57%) 421.18
udp 3722834 ( 12.75%) 1704169837 ( 7.57%) 457.76
dns 583026 ( 2.00%) 148058453 ( 0.66%) 253.95
realaud 3 ( 0.00%) 517 ( 0.00%) 172.33
halflif 25 ( 0.00%) 3114 ( 0.00%) 124.56
starcra 33 ( 0.00%) 5489 ( 0.00%) 166.33
everque 3402 ( 0.01%) 2941065 ( 0.01%) 864.51
unreal 22 ( 0.00%) 3356 ( 0.00%) 152.55
quake 28 ( 0.00%) 2327 ( 0.00%) 83.11
other 3136022 ( 10.74%) 1553003892 ( 6.90%) 495.21
icmp 343689 ( 1.18%) 73351128 ( 0.33%) 213.42
ipip 185 ( 0.00%) 19270 ( 0.00%) 104.16
ipsec 9047 ( 0.03%) 2087610 ( 0.01%) 230.75
ip6 757088 ( 2.59%) 611863440 ( 2.72%) 808.18
other 97445 ( 0.33%) 17754568 ( 0.08%) 182.20
frag 1119 ( 0.00%) 1081399 ( 0.00%) 966.40
ip6 172179 ( 0.59%) 79193507 ( 0.35%) 459.95
tcp6 91320 ( 0.31%) 57301136 ( 0.25%) 627.48
http(s) 20416 ( 0.07%) 25678986 ( 0.11%) 1257.79
http(c) 37371 ( 0.13%) 3246604 ( 0.01%) 86.87
smtp 354 ( 0.00%) 177026 ( 0.00%) 500.07
ssh 1 ( 0.00%) 74 ( 0.00%) 74.00
dns 325 ( 0.00%) 84925 ( 0.00%) 261.31
bgp 97 ( 0.00%) 23675 ( 0.00%) 244.07
other 32756 ( 0.11%) 28089846 ( 0.12%) 857.55
udp6 62644 ( 0.21%) 18299473 ( 0.08%) 292.12
dns 53268 ( 0.18%) 15533081 ( 0.07%) 291.60
everque 1 ( 0.00%) 105 ( 0.00%) 105.00
other 9375 ( 0.03%) 2766287 ( 0.01%) 295.07
icmp6 17299 ( 0.06%) 2922429 ( 0.01%) 168.94
ip6 84 ( 0.00%) 11412 ( 0.00%) 135.86
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
other6 802 ( 0.00%) 654977 ( 0.00%) 816.68
tcpdump file: 201109081400.dump.gz (681.78 MB)