Thank you Gary
Hi Marv,
Just got back from a bit of a break so sorry for not getting back in here sooner.
This kind of thing does seem to be a really grey area that is buried in the brown stuff! Finding anything out is a real mission. I think I am surprised at how much many people don't actually know!!! 
Luckily we had a consultant come in to look at some of the issues we were having. He reckoned that 20-30 RSTs over 4 hours is not a problem. Regarding my question about whether an RST is ACKed, he said it depends on whether an ACK is requested. Apparently in some applications the programmer may not write that bit in, so we get no ACK.
I don't know what anyone else thinks but I am begining to think that "if it's not broken, don't try to fix it"! So if your boxes that are generating TCP errors are not stressing themselves (CPU etc) and the network traffic is not overloaded (remember that a simple RST is going to be a tiny datagram), don't worry about it!
No, I don't like it either!!!!!
TCP anyone?
Anyone with good knowledge of TCP?
I understand that the TCP RST flag is set when the connection becomes
unsynchronised. Is there any other reason for reseting a connection?
If SERVER sends a packet with RST=1 does CLIENT respond at all? Should we
see an ACK from CLIENT for the packet containing RST=1?
Or does CLIENT just start up the three way handshake again?
ALSO - And this is the real big question...... If, over the course of about
4 hours, I see about 18 - 20 RST packets between a client and differnet servers, is
this something to worry about?
We are having "delayed write" errors between the clients and a number of
servers and suspect that something (ISA?) is dropping frames.
Any help or TCP gurus out there would be magic!
Cheers
This conversation is currently closed to new comments.