Want to protect your cyber security and still get fast solutions? Ask a secure question today.Go Premium

x
?
Solved

TCP DUP ACK and TCP Windows Update

Posted on 2010-08-30
1
Medium Priority
?
2,077 Views
Last Modified: 2012-05-10
I know there have been several questions asked on this topic and I have reviewed them.  

Here is my question.  i am doint a Wireshark capture over two 100/full connections that appear to be clean except for these two flags.  There are no re-transmits or fast re-transmits.  All of the DUP ACK and TCP Window Updates are gernated from my source server out to the server that sends me the data stream.  
Here is how my data flow works.  I connect out from my server to a remote server to start a data stream over a 100/FULL local connection.  Once the stream starts it is only a one way street.  My side is only consuiming the stream.  When I look at the wireshark logs filtered with tcp.analysis.flags it show tons of TCP DUP ACK errors from my side to the feed side.  I have changed my buffers on my NIC and various other items.  Is there anything that I am missing?  I have verified my switch logs and everything is clean there also.
0
Comment
Question by:ericluoma
1 Comment
 
LVL 28

Accepted Solution

by:
mikebernhardt earned 2000 total points
ID: 33568308
Depending on your mirroring topology and where exactly you are capturing from, you could simply be seeing the same ACKs twice. For example if you were capturing on links both in and out of a switch. Usually this would mean seeing all packets twice but again, it's possible to see one side once and the other side twice. Think it through and make changes as required.
0

Featured Post

Who's Defending Your Organization from Threats?

Protecting against advanced threats requires an IT dream team – a well-oiled machine of people and solutions working together to defend your organization. Download our resource kit today to learn more about the tools you need to build you IT Dream Team!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Load balancing is the method of dividing the total amount of work performed by one computer between two or more computers. Its aim is to get more work done in the same amount of time, ensuring that all the users get served faster.
Is your computer hacked? learn how to detect and delete malware in your PC
NetCrunch network monitor is a highly extensive platform for network monitoring and alert generation. In this video you'll see a live demo of NetCrunch with most notable features explained in a walk-through manner. You'll also get to know the philos…
In this brief tutorial Pawel from AdRem Software explains how you can quickly find out which services are running on your network, or what are the IP addresses of servers responsible for each service. Software used is freeware NetCrunch Tools (https…
Suggested Courses

580 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question