tags:

views:

49

answers:

1
+1  Q: 

What's the redundant data in TCP packet?

I am reading "Unix Network Programming" and tcpdump the packet generate by the example. The example is just send out a packet contain string "liha".

I read the TCP/IP RFC and found normal IP header is 20B. and normal TCP header except data is 24B.

So, there are 8B before string "liha" in the captured packet. Are "0121 3d2a 0120 b43e" useless?

11:00:51.690949 IP localhost.40163 > localhost.9877: Flags [P.], seq 94:99, ack 95, win 513, options [nop,nop,TS val 18955562 ecr 18920510], length 5
         0x0000:  4500 0039 ddc6 4000 4006 5ef6 7f00 0001  E..9..@.@.^.....
         0x0010:  7f00 0001 9ce3 2695 8465 e35c 8466 58ca  ......&..e.\.fX.
         0x0020:  8018 0201 fe2d 0000 0101 080a 0121 3d2a  .....-.......!=*
         0x0030:  0120 b43e 6c69 6861 0a                   ...>liha.
+2  A: 

Those are the TCP options. And your analyzer already parsed them for you:

options [nop,nop,TS val 18955562 ecr 18920510],

They are generally important and used by communication sides to negotiate which extra enhancements can be used for the TCP connection.

Dummy00001  2010-07-02 10:08:44
Dummy00001, thank you, but in RFC793 http://www.faqs.org/rfcs/rfc793.html, figure 3, options are in 21B~23B, not 25B~28B in this case? Any suggestion?
David  2010-07-02 13:06:15
Options have dynamic size (which I do not know how is precisely defined). That's why TCP header has the data offset field: first 20 bytes are fixed, rest up to the data offset are the options.
Dummy00001  2010-07-02 15:00:50
Example of options' parsing: http://lxr.linux.no/#linux+v2.6.33/net/ipv4/tcp_input.c#L3729
Dummy00001  2010-07-02 15:20:43

related questions

How do I get the external IP of a socket in Python?
How Do Sockets Work in C?
How do you send and receive UDP packets in Java on a multihomed machine?
Can't Re-bind a socket to an existing IP/Port Combination
Reading from a socket in C#
Sockets and Processes in Java
Stream data (such as music) using PHP (or another language)
How to forcibly close a socket in TIME_WAIT?
How do I make persistent network sockets on Unix in Ruby?
What's the idiomatic way to do async socket programming in Delphi?
How do you minimize the number of threads used in a tcp server application?
WSACancelBlockingCall exception
C# Performance For Proxy Server (vs C++)
How to get your own (local) IP-Address from an udp-socket (C/C++)
Free Network Monitor
Reconnect logic with connectivity notifications
Maximum buffer length for sendto?
Configure a Java Socket to fail-fast on disconnect?
Sockets in Pascal
Firefox plugin - sockets
How can I determine the IP of my router/gateway in Java?
ActionScript 3.0 sockets can't reconnect
Reverse DNS in Ruby?
Asynchronous multi-direction server-client communication over the same open socket?
How to use the C socket API in C++ on z/OS