Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations Mike Lewis on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

TCP Retransmission

Status
Not open for further replies.
harddrive747

harddrive747

Technical User
Dec 22, 2009
4
0
0
US
I am working with a situation of slow performance on an application that we use.

I have taken packet captures of this application and noticed that there were a lot of retransmissions. When I look at the packets, there is an HTTPS packet and then like .000001 seconds later there is a TCP that says that it is a retransmission of the HTTPS packet.

Has anyone see anything like this before and if so what is the cause of it? This is saying that up to 50% of the packets are retransmitted.

Thanks for your help in advance.
Terry
 
Sort by date Sort by votes
how big are the packets? is there a df in the packet?
 
Upvote 0 Downvote
the packets are 1380 bytes. Not sure what you mean by "DF" in the packet. If you mean difference, there is no difference in either packet, except for the relative time is different.

Thanks.
 
Upvote 0 Downvote
DF is 'dont fragment' is this a new issue? has this ever worked?
 
Upvote 0 Downvote
It has been working, the users have been complaining of slowness and this application is outside our organization. This is an issue that I just noticed because the user was complaining about slowness.

The DF bit is set to 1 on both packets.
 
Upvote 0 Downvote
so that i understand.... users at your company are going to (at another location outside your org) and you are seeing dropped packets on your network. correct? are there dropped packets for this website only? what is your head end device? do you see the same behavior going to yahoo.com? can you call the vendor, is anyone else experiencing slowness? is there increased traffic cause of the holiday?
 
Upvote 0 Downvote
It looks like something going on internally, but still unsure.

thanks for your help.
 
Upvote 0 Downvote
The DF bit should be set to zero.

/

tim@tim-laptop ~ $ sudo apt-get install windows
Reading package lists... Done
Building dependency tree
Reading state information... Done
E: Couldn't find package windows...Thank Goodness!
 
Upvote 0 Downvote
It shouldn't matter what the DF bit is set to, although an efficient network should not allow fragmentation to occur, so I would tend to like the DF bit being set.

The DF bit means "Do not fragment".

Normally, if a router attempts to route a packet larger than the MTU size accepted by the next router, the first router will simply fragment the packet and send it as two packets instead. This places additional overhead on both the router and the destination host as well as creating a Murphy's Law situation at any firewall or filtering device the packet fragments have to traverse.

If the DF bit in the packet is set to 1, this means the first router is not allowed to fragment the packet. In this case, the router drops the packet, and sends a special ICMP "Destination unreachable" packet back to the packet's source, which decodes as "fragmentation needed and DF bit set" and includes the maximum MTU available for the path. The source host updates its registry with the new maximum MTU size and sends further packets at the right size.

That's my understanding of it, anyway.
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

robocat
  • Locked
  • Question
Yet another TCP RST flag problem
Replies
0
Views
213
robocat
robocat
CryptoTuke
  • Locked
  • Question
Maximum buffer size on Winsock for sending one block of data over TCP / IP
Replies
1
Views
322
maybeimaleo
maybeimaleo
uuunnniiixxx
  • Locked
  • Question
Fieldbus vs TCP/IP
Replies
2
Views
257
meneerB
meneerB
TheFaz_
  • Locked
  • Question
Sending udp packets from fpga to the computer using Lwip tcp/ip stack using C programming
Replies
0
Views
215
TheFaz_
TheFaz_
F_Ionut
  • Locked
  • Question
TCP-IP over GPRS with Modbus
Replies
1
Views
108
robertjo24
robertjo24

Part and Inventory Search

Sponsor

Back
Top