I was looking at a flow of traffic from a windows 7 desktop,
You can see normal traffic tcp and udp to an internal server
then 443 (HTTPS) traffic to several different external IP's
then I see one connection from port 46106 UDP to a server in IRAN on port 35640 (UDP) packet size 0
then it goes back to 443 TCP https traffic.
I checked the IP address that is located in Iran and it is blacklisted.
So my question is regarding UDP. What does it mean when the packet size is 0? and why would a