Solved

TCPView questions

Posted on 2011-03-07
1
327 Views
Last Modified: 2012-05-11
Hi

I have an application server, Server1, running on Windows 2008 Server. I have clients from many subnets connecting to it, some are on the same LAN, some are connecting across the WAN.

We often have connectivity issues so I was looking for a program/function that told me whether the server had actually recvd the connection from the client and what state it was in. I figured on Netstat but then came across TCPView.

I had some questions I was hoping someone could assist me with:

1. If I had a connection from a client at 192.168.1.246, is there a way to actually filter for this, or do I need to sort by IP address (Remote Address).

2. If I had a suspect connection from 192.168.2.123 and wanted to close this, what's the best way to do this?

3. I see there are connection states of:

Listening
Established
Close_Wait
Last_ACK

etc.

Does anyone have a handy link to explain what these mean?
0
Comment
Question by:chuckp2010
1 Comment
 
LVL 57

Accepted Solution

by:
giltjr earned 500 total points
ID: 35060775
1) TCPView has no filtering capabilities.



2) That I am aware of Windows does not have a way to terminate a specific active TCP connection.  I'm not sure, but I don't think *nix does either.

3) Although for the NETSTAT command it the same states: http://support.microsoft.com/kb/137984

You may want to look into Wireshark (http://www.wireshark.org).  This allows you to capture traffic and see what they are doing.  This allows you to filter on specific IP address (and TCP or UDP ports along with a lot of other filtering capabilities).
0

Featured Post

IT, Stop Being Called Into Every Meeting

Highfive is so simple that setting up every meeting room takes just minutes and every employee will be able to start or join a call from any room with ease. Never be called into a meeting just to get it started again. This is how video conferencing should work!

Join & Write a Comment

When it comes to security, there are always trade-offs between security and convenience/ease of administration. This article examines some of the main pros and cons of using key authentication vs password authentication for hosting an SFTP server.
Possible fixes for Windows 7 and Windows Server 2008 updating problem. Solutions mentioned are from Microsoft themselves. I started a case with them from our Microsoft Silver Partner option to open a case and get direct support from Microsoft. If s…
This tutorial will give a an overview on how to deploy remote agents in Backup Exec 2012 to new servers. Click on the Backup Exec button in the upper left corner. From here, are global settings for the application such as connecting to a remote Back…
This tutorial will show how to configure a new Backup Exec 2012 server and move an existing database to that server with the use of the BEUtility. Install Backup Exec 2012 on the new server and apply all of the latest hotfixes and service packs. The…

708 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

17 Experts available now in Live!

Get 1:1 Help Now