tcp messages

Mailing List

Home

Forum Home

Linux - General Red Hat Linux discussion list

Enterprise Linux 3 - Discussion of Red Hat Enterprise Linux 3 (Taroon)

Installation - Getting started with Red Hat Linux

Red Hat Linux 9 - Discussion of Red Hat Linux 9 (Shrike)

Red Hat Linux 7.3 - Discussion of Red Hat Linux 7.3 (Valhalla)

Red Hat Linux 7.2 - Discussion of Red Hat Linux 7.2 (Enigma)

Apache Web Server

Oracle database, Microsoft SQL server ...

Subjects

•	application/x mplayer2 plugin
•	RPM error: db4 error(16) from dbenv >remove: Device or resource busy
•	Command stream end of file while reading
•	X Windows problem (xauth)
•	Upgrading openoffice 1 1 rpm
•	FTP: connection refused
•	FTP: connection refused
•	mount: /dev/cdrom: is not a valid block device
•	Dell Precision 650, RedHat 9, no sound
•	how to trace the cause resulting in the crash of bind server
•	Virus on the list
•	UNINSTALL RPM MYSQL
•	usb pen drives: mounting as a user
•	broadcom network interface
•	make mrproper
•	sendmail configuration on redhat
•	Couldn 't open PID file /var/run/named/named pid Permission denied
•	Promise 378 controller
•	kernel 2 6 and /dev/sound/mixer not found
•	Problem using up2date
•	mrtg step by step howto/configuration for a newbie?
•	Compiling and Installing Kernel 2 6
•	Can 't locate module ppp0, can 't locate module ppp compress 21
•	HOW I CAN MAKE BOOTABLE FLOPPY DISKET
•	Lotus Notes under Wine
•	/etc/security/limits conf question
•	Intel E/1000 driver
•	Command stream end of file while reading
•	rpm database corrupt
•	qla2300 modules

tcp messages

tcp messages

2005-06-18 - By Vipul Ramani

Back

Reply: 1 2

hi Smith,
This is problem someone is running some sort of "tar-pit" system that is
designed to keep sockets in a bad state and run you out of kernel memory.

RFC793 describes the correct behaviors here:

The mechanisms provided allow a TCP to advertise a large window and to
subsequently advertise a much smaller window without having accepted that
much data. This, so called "shrinking the window," is
strongly discouraged. The robustness principle dictates that TCPs will not
shrink the window themselves, but will be prepared for such behavior on the
part of other TCPs.

The sending TCP must be prepared to accept from the user and send at least
one octet of new data even if the send window is zero. The sending TCP must
regularly retransmit to the receiving TCP even when
the window is zero. Two minutes is recommended for the retransmission
interval when the window is zero. This retransmission is essential to
guarantee that when either TCP has a
zero window the re-opening of the window will be reliably reported to the
other.

When the receiving TCP has a zero window and a segment arrives it must still
send an acknowledgment showing its next expected sequence number and current
window (zero).

V
On 6/6/05, DBSMITH@(protected) <DBSMITH@(protected)> wrote:

> Has anyone seen or know what these messages from dmesg are? Is there
> something that needs adjusted...aka window size?
>
>
> TCP: Treason uncloaked! Peer 172.25.131.224:515/35691<http://172.25.131.224
:515/35691>shrinks window
> 4136994921:
> 4136996381. Repaired.
>
> TCP: Treason uncloaked! Peer 172.25.131.224:515/35696<http://172.25.131.224
:515/35696>shrinks window
> 4169121581:
> 4169123041. Repaired.
>
> TCP: Treason uncloaked! Peer 172.25.131.224:515/35696<http://172.25.131.224
:515/35696>shrinks window
> 4169121581:
> 4169123041. Repaired.
>
> TCP: Treason uncloaked! Peer 172.25.131.224:515/35697<http://172.25.131.224
:515/35697>shrinks window
> 4174644883:
> 4174646343. Repaired.
>
> TCP: Treason uncloaked! Peer 172.25.131.224:515/35697<http://172.25.131.224
:515/35697>shrinks window
> 4174669703:
> 4174671163. Repaired.
>
> TCP: Treason uncloaked! Peer 172.25.131.224:515/35697<http://172.25.131.224
:515/35697>shrinks window
> 4174669703:
> 4174671163. Repaired.
>
> TCP: Treason uncloaked! Peer 172.25.131.224:515/38385<http://172.25.131.224
:515/38385>shrinks window
> 1327521259:
> 1327522719. Repaired.
>
> TCP: Treason uncloaked! Peer 172.25.131.224:515/38385<http://172.25.131.224
:515/38385>shrinks window
> 1327521259:
> 1327522719. Repaired.
>
> TCP: Treason uncloaked! Peer 172.25.131.224:515/38385<http://172.25.131.224
:515/38385>shrinks window
> 1327532939:
> 1327534399. Repaired.
>
> TCP: Treason uncloaked! Peer 172.25.131.224:515/38388<http://172.25.131.224
:515/38388>shrinks window
> 1347341800:
> 1347343260. Repaired.
>
> TCP: Treason uncloaked! Peer 172.25.131.224:515/38388<http://172.25.131.224
:515/38388>shrinks window
> 1347352020:
> 1347353480. Repaired.
>
> TCP: Treason uncloaked! Peer 172.25.131.224:515/38388<http://172.25.131.224
:515/38388>shrinks window
> 1347352020:
> 1347353480. Repaired.
>
>
> Derek B. Smith
> OhioHealth IT
> UNIX / TSM / EDM Teams
> 614-566-4145
>
> --
> redhat-list mailing list
> unsubscribe mailto:redhat-list-request@(protected)?subject=unsubscribe
> https://www.redhat.com/mailman/listinfo/redhat-list
>

--
Vipul Ramani
linux2000in@(protected)
linux2000in@(protected)
~~~~~We Know HOW NetWorkS ~~~~~
--
redhat-list mailing list
unsubscribe mailto:redhat-list-request@(protected)?subject=unsubscribe
https://www.redhat.com/mailman/listinfo/redhat-list

Earn $52 per hosting referral at Lunarpages.