Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

TCP Sequence Number

Tags:

numbers

tcp

sequence

rfc

I'm trying to understand how the sequence numbers of the TCP header are generated.

In some places I read that it is the "index of the first byte in the packet" (link here), on some other sites it is a random 32bit generated number that is then incremented.

I don't really know which is which, so here are some questions:

  • How is the initial sequence number generated? (Please provide an RFC number if there is one)
  • How is it incremented?
  • How is the secret key generated?

I read some of the RFCs like RFC 6528, RFC 793, and RFC 1948 but I can't seem to understand which one is actually implemented.

I read about the "std" status but still...

Thank you in advance!

like image 282
m_vdbeek Avatar asked May 04 '12 16:05

m_vdbeek

People also ask

How is TCP sequence number generated?

TCP is a stream transport protocol. To ensure connectivity, each byte to be transmitted is numbered. During connection establishment, each party uses a Random number generator to create an initial sequence number (ISN), which is usually different in each direction.

Does TCP have sequence number?

TCP Sequence Number is a 4-byte field in the TCP header that indicates the first byte of the outgoing segment. It helps to keep track of how much data has been transferred and received. The TCP Sequence Number field is always set, even when there is no data in the segment.

How many TCP sequence numbers are there?

When a host initiates a TCP session, its initial sequence number is effectively random; it may be any value between 0 and 4,294,967,295, inclusive. However, protocol analyzers like Wireshark will typically display relative sequence and acknowledgement numbers in place of the actual values.

How long is a TCP sequence number?

Each byte to be transmitted is numbered to assure connectivity. Each party generates an initial sequence number (ISN) during connection establishment using a random number generator, which is usually different in each direction. A TCP sequence number is 32 bits long, as we know.

1 Answers

Each endpoint of a TCP connection establishes a starting sequence number for packets it sends, and sends this number in the SYN packet that it sends as part of establishing a connection.

There is no requirement for either end to follow a particular procedure in choosing the starting sequence number. The operating system is free to use any mechanism it likes, but generally it's best if it chooses a random number, as this is more secure.

From that starting point, each packet sent by either end contains two sequence numbers - one to specify where in the stream the packet is, and an ACK sequence number which signifies the number of bytes received. Both numbers are offset by the starting sequence number.

Read all about it in Wikipedia of course - look for "sequence number" in that page to get all the gory details.

like image 67
Michael Slade Avatar answered Sep 21 '22 06:09

Michael Slade
Sign in to Comment

Related questions

Java detect lost connection [duplicate]
Writing to a closed, local TCP socket not failing
What is the reason and how to avoid the [FIN, ACK] , [RST] and [RST, ACK]
Discovering public IP programmatically
Why does UDP have a length field in the header and TCP does not?
How to reproduce a silently dropped TCP/IP connection?
Troubleshooting connections stuck in CLOSE_WAIT status
Unable to ssh into remote Linux by ngrok
Cannot assign requested address - possible causes?
Is it possible to connect to SSH using JavaScript?
Why does a SYN or FIN bit in a TCP segment consume a byte in the sequence number space?
Why tcp connect termination need 4-way-handshake?
Relation between HTTP Keep Alive duration and TCP timeout duration
close() is not closing socket properly
How does Port Number really work in TCP?
TCP connection, bash only
close() socket directly after send(): unsafe?
node.js - handling TCP socket error ECONNREFUSED
What are meanings of fields in /proc/net/dev?
HttpWebRequest's Timeout and ReadWriteTimeout -- What do these mean for the underlying TCP connection?

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!