Hi, We have a scenario like my end LB is sending SYN message and from the far end it is sending ACK message instead of sending the SYN,ACK, and again LB end it is re-transmitting the packet. Can you please help me why far end device/server is sending ACK message directly to SYN message instead of SYN,ACk, what could be the issue does we need to check at our LB side or far end server side. Thank You, Suresh asked 12 May '17, 06:57  Suresh Jothi |
One Answer:
Suresh- Are you sure the ACK is in response to the SYN and not an ACK to other data? Do you have a complete trace? Is it possible the far-end is not performing a 3-way handshake but trying to send discrete SYN and ACK messages in response to the initial SYN as diagrammed in RFC 793 on page 27? NOTE: I've never (EVER) seen a device do this but just speculating. answered 12 May '17, 07:07  dbAtAffirmed |
Suresh- I saw your trace (not sure why it doesn't show up here)... The far end looks quite broken. If you are not already running the capture on that device I would suggest you run it there (103.16.101.51) to get its point-of-view to ensure there isn't anything funny going on. /dave