Home > Others

Wireshark packet capture analysis TCP establishment and disconnection Process Analysis

Source: Internet
Author: User
Developer on Alibaba Coud: Build your first app with APIs, SDKs, and tutorials on the Alibaba Cloud. Read more >

Wireshark packet capture Analysis of TCP establishment and disconnection Process

1. Establish a connection over TCP

Note: In this figure, Hosta acts as the client and hostb acts as the server.

TCP is the transport layer protocol in the Internet. It uses the three-way handshake protocol to establish a connection. When the active Party sends a SYN connection request, wait for the other party to answer SYN, Ack. This method of establishing a connection can prevent incorrect connections. The traffic control protocol used by TCP is a variable-size Sliding Window Protocol.

First handshake: When a connection is established, Hosta sends the SYN Packet (SEQ = A) to hostb and enters the syn_send status. Wait for hostb to confirm.

Second handshake: After receiving the SYN packet, hostb must confirm the Syn (ACK = a + 1) of Hosta and also send a SYN Packet (SEQ = B), that is, SYN + ACK packet, in this case, hostb enters the syn_recv state.

Third handshake: Hosta receives the SYN + ACK package of hostb and sends the ACK (ACK = B + 1) Confirmation package to hostb. After the package is sent, Hosta and hostb enter the established status and complete three handshakes.

Packet Capture Verification:

First handshake:

Second handshake:

Third handshake:

Ii. TCP disconnection

After the data transmission is complete, the TCP connection needs to be closed after four handshakes. The steps are as follows:

  1. Hosta: to terminate the connection, send the segment with the serial number P, set the fin bit, and confirm the segment received previously;
  2. After receiving the segment sent by Hosta, hostb sends the ACK segment and confirms that it is p + 1, and closes the connection.
  3. At the same time, hostb sends a segment with the serial number Q, and sets the fin to notify the connection to be closed;
  4. After Hosta receives the segment sent by hostb, it sends the ACK segment, confirms that it is q + 1, and closes the connection.

Packet Capture Verification:

First handshake:

The second and third handshakes:

The fourth handshake:

The experiment is complete !!!!!!!!!!!!!

This article is an English version of an article which is originally in the Chinese language on aliyun.com and is provided for information purposes only. This website makes no representation or warranty of any kind, either expressed or implied, as to the accuracy, completeness ownership or reliability of the article or any translations thereof. If you have any concerns or complaints relating to the article, please send an email, providing a detailed description of the concern or complaint, to info-contact@alibabacloud.com. A staff member will contact you within 5 working days. Once verified, infringing content will be removed immediately.

Related Keywords:
wireshark analysis wireshark packet capture wireshark packet capture examples wireshark voip analysis wireshark network analysis wireshark graph analysis wireshark traffic analysis

Contact Us

The content source of this page is from Internet, which doesn't represent Alibaba Cloud's opinion; products and services mentioned on that page don't have any relationship with Alibaba Cloud. If the content of the page makes you feel confusing, please write us an email, we will handle the problem within 5 days after receiving your email.

If you find any instances of plagiarism from the community, please send an email to: info-contact@alibabacloud.com and provide relevant evidence. A staff member will contact you within 5 working days.

What's Trending
Top 10 Tags
datastax versions naming convention zookeeper client class definition md5 microsoft sql server 2005 data structures exception handling error handling
Top 10 Keywords
microsoft download center down wordpress address url site address url wordpress address url windows installer 4 0 download 302 not found web address url definition site address url wordpress db2 integer mac os installation step by step pdf abbreviation for return

A Free Trial That Lets You Build Big!

Start building with 50+ products and up to 12 months usage for Elastic Compute Service

Get Started for Free

  • Sales Support

    1 on 1 presale consultation

    Chat Contact Sales

  • After-Sales Support

    24/7 Technical Support 6 Free Tickets per Quarter Faster Response

    Open a Ticket

  • Alibaba Cloud offers highly flexible support services tailored to meet your exact needs.

    Learn More