Reputation: 17397
TCP strange RST packet terminating connection
The question is we have the following setup and we have noticed sometime client sends RST packet to terminate initial TCP handshake connection and application gets a timeout.
[10.5.8.30]------[Linux FW]-------[10.5.16.20]
Wireshark:
You can see in Wireshark RST packet, I thought its FW sending RST but in capture packet coming from 10.5.8.30 so what could be wrong here? why connection getting reset randomly, if I try next time then it will work.
Upvotes: 0
Views: 2316
Answers (1)
Reputation: 30285
The fact that the source IP for the RST packet is 10.5.8.30 doesn't mean that it really came from 10.5.8.30.
There are firewalls and various other intermediary devices that forge such packets. Try capturing on both ends to check whether 10.5.8.30 did, in fact, send the RST. It doesn't make sense for a client to send a TCP Syn and then a RST.
Upvotes: 1
Related Questions
- Java, server client TCP communication ends with RST
- TCP: Server sends [RST, ACK] immediately after receiving [SYN] from Client
- socket - close(2) send RST packet instead of FIN packet
- Why am I sending an RST if my socket is connected and not closed?
- Why is there TCP RST packet after sending a string and closing a socket
- Why is one endpoint of this TCP connection sending a packet with the RST flag?
- Why TCP RST packet generated what are the possible cause
- Does TCP stack ever send unsolicited RST on existing connection
- RST packet sent from application when TCP connection not getting closed properly
- TCP connection - delayed close() and RST