Source Destination Protocol Info
220.127.116.11 18.104.22.168 TCP hi3182>http [SYN] Seq=0 Len=0 MSS=1420,win=,..etc
What is the meaning of the values of TCP flags in the Info column?
27 Dec '11, 23:17
28 Dec '11, 06:31
The TCP flags shows what the sending TCP entity wants the receiving TCP entity to do. In this case SYNchronize with the sender, using the other data listed. Check the TCP/IP Guide for details.
27 Dec '11, 23:38
And be sure to have a look at the various TCP-related RFC's, such as the original TCP RFC, RFC 793, as well as RFC 3168, which introduced the ECE and CWR flags, and RFC 3540, which introduced the NS flag. These 3 latter flags are not [yet] mentioned in the TCP/IP Guide.
Once you sign in you will be able to subscribe for any updates here
Answers and Comments
learn more about Markdown
Riverbed Technology lets you seamlessly move between packets and flows for comprehensive monitoring, analysis and troubleshooting.
Riverbed is Wireshark's primary sponsor and provides our funding.
Asked: 27 Dec '11, 23:17
Seen: 13,543 times
Last updated: 28 Dec '11, 17:20
What are you waiting for? It's free! Wireshark documentation and downloads can be found at the Wireshark website.
getting more info on TCP packets
sending TCP packets
How can I know the number of open TCP streams in the pcap file?
How to analyse througput, packet loss, RTT rather than go through the graph of built-in feature of wireshark?
TCP ACKed lost segment on OS X server
Keylogger Need help to get the login info.
Server sends PSH, ACK during 3-way handshake
Can ACKs happen outside the RWIN?
How can I follow one conversation/session in a wireshark trace?
How to capture tcp 3 way handshake
powered by OSQA
First time here? Check out the FAQ!