Global Traffic Statistics

Rut Row - bad mojo Scooby!

Global Traffic Statistics

Network Interface(s)

Name	Device	Type	Speed	Sampling Rate	MTU	Header	Address	IPv6 Addresses
eth0	eth0	Ethernet		0	1514	14	208.75.85.99	::/0

Local Domain Name

Sampling Since

Thu Jun 19 10:23:20 2008 [20 days 3:01:47]

Active End Nodes

632

Traffic Report for 'eth0' [switch]

Packets


Dropped (libpcap)	0.0%	146,407
Dropped (ntop)	0.0%	0
Total Received (ntop)	420,917,342
Total Packets Processed	420,917,342
Unicast	99.9%	420,661,778
Broadcast	0.1%	255,564
Multicast	0.0%	0
Shortest	42 bytes
Average Size	308 bytes
Longest	8,231 bytes
<= 64 bytes	35.6%	149,937,690
64 to 128 bytes	29.1%	122,281,706
129 to 256 bytes	0.7%	2,847,459
257 to 512 bytes	2.7%	11,567,421
513 to 1024 bytes	5.4%	22,853,512
1025 to 1518 bytes	17.9%	75,175,631
> 1518 bytes	8.6%	36,253,923

Packets too long [> 1514]	8.6%	36,253,965
Bad Packets (Checksum)	0.0%	0

Traffic


Total	282.0 GB [420,917,342 Pkts]
IP Traffic	189.5 GB [189.5 GB Pkts]
Fragmented IP Traffic	0 [0.0%]
Non IP Traffic	92.5 GB
Average TTL	66
TTL <= 32	0.1%	369,606
32 < TTL <= 64	71.3%	300,282,790
64 < TTL <= 96	0.0%	105,426
96 < TTL <= 128	28.1%	118,102,672
128 < TTL <= 160	0.0%	2,976
160 < TTL <= 192	0.0%	96,936
192 < TTL <= 224	0.0%	12,458
224 < TTL <= 256	0.4%	1,841,304

Remote Hosts Distance

Network Load

Actual	2.7 Mbps	389.6 Pkts/sec
Last Minute	1.5 Mbps	259.1 Pkts/sec
Last 5 Minutes	1.6 Mbps	263.1 Pkts/sec
Peak	7.4 Mbps	1264.7 Pkts/sec
Average	1.3 Mbps	242.1 Pkts/sec

Historical Data

[

]

Global Protocol Distribution

Protocol

Data

Percentage

189.5 GB

67.2%

TCP

189.2 GB

99.8%

UDP

358.5 MB

ICMP

14.2 MB

Other IP

9.8 KB

(R)ARP

3.6 MB

Global TCP/UDP Protocol Distribution

TCP/UDP Protocol

Data

Flows

Accumulated Percentage / Historical Protocol View

FTP

8.8 KB

PROXY

7.5 KB

HTTP

189.1 GB

20,966,462

99.8%

DNS

355.3 MB

2,543,518

Telnet

3.1 KB

NBios-IP

335.0 KB

3,243

Mail

3.2 MB

12,862

DHCP-BOOTP

1.5 KB

X11

45.8 KB

428

SSH

77.0 MB

20,747

Gnutella

0.1 KB

Kazaa

0.3 KB

eDonkey

0.4 KB

Other TCP/UDP-based Protocols

17.5 MB

21,019,934

Accumulated View

Historical View

Note:

What is a flow?
- TCP: a flows is a TCP connection.
- UDP: a flow is a packet.
TCP flows are not accounted for fully (sender and recipient) remote peers.

TCP/UDP Traffic Port Distribution:
Last Minute View

TCP/UDP Port		Total	Sent	Rcvd
www	80	10.2 MB	9.2 MB	990.0 KB
49827	49827	204.5 KB	6.7 KB	197.8 KB
49819	49819	164.0 KB	4.8 KB	159.3 KB
49826	49826	144.1 KB	4.1 KB	140.0 KB
49830	49830	112.2 KB	4.6 KB	107.6 KB
49810	49810	110.8 KB	4.9 KB	106.0 KB
19820	19820	103.5 KB	6.6 KB	96.9 KB
2915	2915	102.1 KB	5.1 KB	96.9 KB
58057	58057	96.6 KB	7.1 KB	89.5 KB
2916	2916	96.4 KB	4.7 KB	91.8 KB
46634	46634	93.0 KB	5.2 KB	87.9 KB
2487	2487	90.6 KB	6.5 KB	84.1 KB
1781	1781	90.1 KB	7.5 KB	82.6 KB
58044	58044	85.4 KB	6.6 KB	78.8 KB
2539	2539	84.5 KB	4.4 KB	80.1 KB
49809	49809	82.8 KB	3.2 KB	79.6 KB
11125	11125	82.4 KB	4.9 KB	77.5 KB
46635	46635	82.0 KB	4.6 KB	77.4 KB
2493	2493	81.4 KB	5.7 KB	75.6 KB
49815	49815	79.5 KB	3.3 KB	76.2 KB
3162	3162	78.8 KB	8.6 KB	70.2 KB
62102	62102	77.7 KB	1.5 KB	76.2 KB
46636	46636	77.4 KB	3.9 KB	73.5 KB
11126	11126	71.6 KB	4.6 KB	67.0 KB
62300	62300	69.5 KB	2.0 KB	67.5 KB
2921	2921	69.0 KB	3.7 KB	65.2 KB
3046	3046	68.9 KB	5.4 KB	63.5 KB
49822	49822	67.8 KB	3.5 KB	64.3 KB
2494	2494	67.5 KB	4.5 KB	62.9 KB
1774	1774	66.9 KB	4.9 KB	62.0 KB
1779	1779	64.9 KB	4.6 KB	60.3 KB
64926	64926	64.3 KB	2.3 KB	62.0 KB
Notes: sum(total traffic per port) = 2*(total IP traffic) because the traffic per port is counted twice (sent and received) This report includes broadcast packets

This extract is just a sample of the packets ntop has seen.

Report created on Wed Jul 9 13:25:07 2008 [ntop uptime: 20 days 3:01:47]
Generated by ntop v.3.2 SourceForge .tgz [x86_64-unknown-linux-gnu]
© 1998-2005 by Luca Deri, built: Mar 6 2007 09:15:10.
Listening on [eth0] for all packets (i.e. without a filtering expression)
Web reports include all interfaces (merged)