TCP Duplicate Acks Explained // How to Troubleshoot Them

Dup ACKs also happen for out-of-order arrivals. It doesn't always have to be packet loss, just segments not arriving when they should have ;)

Chris, thank you for making these videos, you explain complex concepts with such ease!

Chris love your content it is so powerful and is super helpful thank you please keep up the good work

Today subscribe this channel and were talking about this topic with my buddy and you made it.... Great job sir.

i hve ZTE MC801A 5G CPE same problem with windows pc if use ethernet.. no problem with wifi..
can you please help me.. how to solve this issue?? 🙏

Chris, hi!
Am i right if I say that Dup ACK packets appears when a receiver misses some continuous interval? For example sender sends packets 1,2,3,4,5. If the receiver receives 1 packet, missed 2 and 3, receives 4 and 5 we may see ACK packet from the receiver where ACK number = 1, left edge = 4, right edge = 5. Right?
What might an ACK packet from the receiver look like when the receiver receives packet 1, misses 2, receives 3, misses 4, receives 5?

Dear Chris, thank you very vey much. You've got no idea how these training enlighten my way to network analysis. I'm a substation protection/control engineer working with IEC61850 trying to find a way to be able to troubleshoot what's going on when I didn't recieve a signal on dcs system.
And guess what, with the help of this channel I'm growing more and more everyday.
Good luck with what you're doing. You're awesome🙏

Thanks Chris. Your videos are very informative and digestuble. I’d appreciate it if you could make a video about tcp out of order.

Hello what about Duplicate TCP SYN with different initial sequence number how to troubleshoot it ?

I watch your videos to revise my concepts. Every content produced by you is pure gold.

HI chris , can you create some video regarding TCP Half close and tcp half open and live example related it.

Great analysis thank chris

Chris, your videos are really helpful. Excellent explanation.

What if you get acks one after the other.... with no dup ack

Excellent Chris!!!
I was seeing the same issue, now I understand
Well explained
Thank you!!!

Good explanation, thank you Chris. One Question: it is possible to analyze in network traffic (TCP) the latency in Wireshark.

Thanks Chris!!!! amazing.. I been in a problem for few days and your help has been amazing.

hi Chris compliment for your fantastic videos!! Great!! i have dubt about dup ack: i have printed a document on my network printer that doesn't support sack opt an at a certain point i have an ack from printer an 2 dup ack with no gap in data... how is it possible? thank you very much in advance

Great person and helpful videos i got a confidence on my knowledge after watching this videos.

Thank you so much for sharing the video. Please make some video on how to find out why the traffic was denied/dropped or at least by the destination ip. I'm new to Wireshark and have no clue to figure that out.

Thank you very much, it is the best video to learn wireshark and tcp

2:35 ... am i the only one who heard Acknowledgment in my left ear in my headset

I'm enjoying these videos. It's got me diving back into WireShark again with a newfound appreciation after a bit of a hiatus. Thanks!

L2 issue. Easy to figure out if you were the one that made the mistake to begin with.

!!!!

I love you chris

Thanks Chris!

great video. Thanks Chris .

There is a chance where there is IP spoofing attack and duplicate IP address may cause getting dup ack..?

great explanation - thank you

Once every couple of weeks I have intermittent conversations timing out where I see a lot of psh,ack… any ideas how to dig into these (for now I proposed to trace also on the other side… what a wild idea, right;-)

Thank you for your videos. When is all about routing protocols there are lots of videos and documents online. On the other hand, if the topic is TCP, most of documents are same and not clear. You really making it simple. Knowing a knowledge does not matter, the most important factor is that you can teach in a simplest way.

Your explanation is awesome

Thank you so much for your time and for making these videos. Much appreciated Chris.

Chris, thank you for helping me to better understand what I should be looking for in pcap traces

Thank you Chris, learned so much from the video, Going to introduce it to the team, Days before, when someone in the team say will engage a network guy to give a wireshark training, all of us raised hands to be attending. indicate this knowledge is so precious. I am working for Microsoft.

Excellent explanation, thank you Chris.

Great stuff, Chris. Thank you for this and the excellent explanation.

Great video Chris, just one question what does it means when client send syn and receives syn+ack from server and send ack. But server keep sending syn+ack and client keep sending dup ack. Thanks

This is literally my dad

Thanks Chris.. its awesome video, but how to troubleshoot this? Is it due to network/server/application issue ? I am currently having an issue where in my capture i can see 9% of the capture having tcpdupack for client1 and 3% for client2 towards same destination server and application port. Both clients are sitting in same switch.

Thank you Chris. It is so an impressive video.

Thanks Chris

Thanks bro.. keep up the good work..

Awesome..keep up the good work..

simple and clear as usal

Hello! I want to learn ethical sniffing on HTTPS. I am very new to this. For example if I sit in a coffie shop how do I steal my friend password/username over HTTPS?