Date: Fri, 29 Aug 2008 16:32:36 +0700 (ICT) From: Olivier Nicole <on@cs.ait.ac.th> To: zhangsc@neusoft.com Cc: freebsd-questions@freebsd.org Subject: Re: tcpdump question Message-ID: <200808290932.m7T9WaBQ038904@banyan.cs.ait.ac.th> In-Reply-To: <043901c909b9$3016f360$3f83a8c0@neusofteaf5839> (message from EdwardKing on Fri, 29 Aug 2008 17:25:19 %2B0800) References: <043901c909b9$3016f360$3f83a8c0@neusofteaf5839>
next in thread | previous in thread | raw e-mail | index | archive | help
Edward, > I want to know what's meaning of 'S','.','P','F'? You should learn a bit about TCP protocol. S is for SYN (synchronize) P is for PUSH F is for FIN . is for nothing Pakets are: 3 way hand shake initiate TCP connection client > server SYN sever > client SYN ACK client > server ACK client > server send data server > client ACK and send data client > server ACK tTermination client > server FIN server > client ACK server > cient FIN client > server ACK ACk means acknowledge. Olivier
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200808290932.m7T9WaBQ038904>