Link to home
Start Free TrialLog in
Avatar of willbaclimon
willbaclimonFlag for United States of America

asked on

Packet Decoding

After users complaining of network slowness I ran a tcp dump on a server and noticed many

TCP      [TCP Out-Of-Order] 9042 > 52734 [PSH, ACK] Seq=352279 Ack=334509 Win=64076 Len=1460

TCP      [TCP Dup ACK 17864#2] 52734 > 9042 [ACK] Seq=334509 Ack=340599 Win=32768 Len=0

Any tips? Advice

Thanks
ASKER CERTIFIED SOLUTION
Avatar of giltjr
giltjr
Flag of United States of America image
Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
SOLUTION
Avatar of harbor235
harbor235
Flag of United States of America image
Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
Avatar of willbaclimon
willbaclimon
Flag of United States of America image

ASKER

Thank you  both....This is a lan based server application with gig connectivity. I have checked network utilization, switch ports errors, crc's etc.. No luck so far. Although this is a sign of network congestion or issue, I believe it might be application due to this app being in development...Is there any way to prove that?


Avatar of giltjr
giltjr
Flag of United States of America image
Where did you run the packet capture from?  The server, a mirrored port of something, your desktop?

There is absolutely no way that somebody could connect to this box over a WAN, like say the Internet?

In the dump you should have the 2 IP addresses that this connection deals with and you need to look at the full network path between those two devices.
Avatar of willbaclimon
willbaclimon
Flag of United States of America image

ASKER

The issue winded up being the linux server nic drivers.