Source Destination Protocol Info
220.127.116.11 18.104.22.168 TCP hi3182>http [SYN] Seq=0 Len=0 MSS=1420,win=,..etc
What is the meaning of the values of TCP flags in the Info column?
27 Dec '11, 23:17
28 Dec '11, 06:31
The TCP flags shows what the sending TCP entity wants the receiving TCP entity to do. In this case SYNchronize with the sender, using the other data listed. Check the TCP/IP Guide for details.
27 Dec '11, 23:38
And be sure to have a look at the various TCP-related RFC's, such as the original TCP RFC, RFC 793, as well as RFC 3168, which introduced the ECE and CWR flags, and RFC 3540, which introduced the NS flag. These 3 latter flags are not [yet] mentioned in the TCP/IP Guide.
Once you sign in you will be able to subscribe for any updates here
Answers and Comments
learn more about Markdown
Riverbed Technology lets you seamlessly move between packets and flows for comprehensive monitoring, analysis and troubleshooting.
Riverbed is Wireshark's primary sponsor and provides our funding.
Asked: 27 Dec '11, 23:17
Seen: 18,109 times
Last updated: 28 Dec '11, 17:20
What are you waiting for? It's free! Wireshark documentation and downloads can be found at the Wireshark website.
Not all SYN packets shown
TCP packet gets dropped
A string is found in the tcp segment data window but not in the tcp stream
TCP Dissector, detect which endpoint opened the connection?
Tcp Window Size and acknowledgment
Bytes in flight value
Too many lost segments, Dup Acks and retransmission
reassembled tcp bytes cannot be displayed
RST, ACK after sending huge portion of data
No TCP traffic captured? Diagnosing?
powered by OSQA
First time here? Check out the FAQ!