Linux - NetworkingThis forum is for any issue related to networks or networking.
Routing, network cards, OSI, etc. Anything is fair game.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
Hello.
I have a problem in my network with one application.
When the application didnt fragment the data, it worked fine, but now its neccesary to fragment the data and now it doesnt work.
I have done a tcpdump capture and appears the following information:
Hello.
I have a problem in my network with one application.
When the application didnt fragment the data, it worked fine, but now its neccesary to fragment the data and now it doesnt work.
I have done a tcpdump capture and appears the following information:
Fragmentation is normally handled by routers and bridges. Why is it "necessary" now?
I almost missed this, but these two packets are from different hosts. Note the ttl. So local hosts are ok, remote hosts are not.
The flag on these packets is DF. A DF Flag means do NOT fragment. So you should be getting ICMP error notification packets.
I also find the size of the packets odd for TCP. I thought the minimum size was a length of 64. I believe these are technically runts, which most routers will discard as damaged packets.
Quote:
Also, my host is after a load balancer, could it be a problem??
Thanks
Fragmentation is normally handled by routers and bridges. Why is it "necessary" now?
I almost missed this, but these two packets are from different hosts. Note the ttl. So local hosts are ok, remote hosts are not.
The flag on these packets is DF. A DF Flag means do NOT fragment. So you should be getting ICMP error notification packets.
I also find the size of the packets odd for TCP. I thought the minimum size was a length of 64. I believe these are technically runts, which most routers will discard as damaged packets.
I don't know, but I don't think so.
Well, our client decided to fragment the data, and when he changed the tx way appears the problems... but analizing the frames i think that the problem is on his application, because I think the sent packets aren't fragmented packets, on TCP/IP, due to the DF flag, but really the frames should be on the same IP packet...
Sorry for my poor english and thanks for your answer
I agree. You might also suggest they reduce their (MSS) Maximum Segment Size on their systems so that fragmentation is not required. Forcing routers to fragment everything can cause delays.
If a packet is marked as DF, then you try to fragment it, the router doing the fragmentation will fail due to DF and will ditch the packet.It will send an ICMP message indiacting fragmentation required but DF set.
The answer is as mentioned - MSS must be set at the TCP source host to force it to use smaller packets.
If a packet is marked as DF, then you try to fragment it, the router doing the fragmentation will fail due to DF and will ditch the packet.It will send an ICMP message indiacting fragmentation required but DF set.
The answer is as mentioned - MSS must be set at the TCP source host to force it to use smaller packets.
Cheers
Pete
Thanks for the answers
Pete, I have one doubt, if the flag DF means "Dont fragment", why do you say that it tries to fragment? With other tcpdump capture I saw the packets are being received on the host, but the application log shows that it discards the second frame, I mean, the application recognizes the first one, but when it receives the second one, due to the packet it's fragmented (althought by ip protocol it doenst!!), the application discards it and return a general error.
If a packet is marked as DF, then you try to fragment it, the router doing the fragmentation will fail due to DF and will ditch the packet.It will send an ICMP message indiacting fragmentation required but DF set.
I am certain this is a typo.
If a packet is marked as DF, and the router determines fragmentation is required, the router doing the fragmentation will fail due to DF and will ditch the packet.It will send an ICMP message indicating fragmentation required but DF set.
If a packet is marked as DF, and the router determines fragmentation is required, the router doing the fragmentation will fail due to DF and will ditch the packet.It will send an ICMP message indicating fragmentation required but DF set.
Thats what I meant! Thank you. It didn't make sense the way I wrote it...
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.