When you need to ensure server applications can connect properly, the general troubleshooting doesn’t help. It calls for advanced ways to troubleshoot TCP/IP connectivity, especially when you have a lot of timeout errors. The connectivity issue could be related to the database server, RDP failures, file sharing, and so on.
On a basic level, when data is sent from one point to another through TCP, in the end, both sender and receiver agree that information is what it should be, and things are alright. Whenever there is a problem with TCP, one of the sides keeps waiting (TIME_WAIT state), and there can be an abrupt close of the sessions, which results in a RESET flag in the TCP header.
Troubleshoot TCP/IP connectivity & configuration issues in Windows
This RESET flag can be seen through the Message Analyzer tool or any of the Network Monitoring Tools, which can help you figure out the TCP header. The header carries information that helps to identify if there is a problem, particularly the RESET flag. Imagine every data sent has a header or transmitter that gives info about the data’s whereabouts.
When using the Message Analyzer, you will have to set up the server’s IP address and the port number, if available and dig into each trace result for detailed information. If there is any error, the tool will mark it. Click on it, and you should be able to see the error message level for that packet. It is easy to use, but it also needs a proper understanding of how to use it.
Finding Packet drops
When data is sent and no response is received from the other end, it means there is a packet loss. The source waits for confirmation, and when that’s not accepted, it will send a ping with ACK RESET flag. This flag means that since there was no confirmation, there could be packet drops or data loss, and hence, the connection is being dropped.
It usually means that the network device in between has some problem. Use the Network tool to monitor the ports and run the trace program. If you do not see the same trace results, you know the issue is somewhere in between.
The incorrect parameter in the TCP header
In-between devices and software usually modify TCP headers. It is standard on computers where internet security software changes the certificates coming from HTTPS-compliant websites. Devices like WAN accelerators can do the same.IT admin will have to look into the configuration of those hardware devices to solve this issue.
To figure this out, you will have to run the trace on both the source and destination, and if the results differ, especially the TCP packet details, then we have a problem.
Application side reset
If the traces don’t show anything probabilistic, then it could be the application that is causing the issue. It happens when the server has accepted the data received but doesn’t accept the connection. So the application would be like it didn’t get anything, and you would wonder if all links are in place.
You can identify this scenario by looking at the TCP flags. If the packet has ACK+RST it means the application is causing the issue, i.e., the destination/server for some reason does not want to accept the package for some reason.
If your application is making use of UDP, then it will be difficult to find it this way. Instead, you will have to make use of ICMP as an error-reporting protocol. If you notice the message ICMP Destination host unreachable: Port unreachable message immediately after the UDP packet, then the application is the cause.
Tips:
- During troubleshooting, if you see everything right, but the server doesn’t respond, it could be the firewall issue. Make sure to reconfigure the firewall to keep those ports or applications clear. You will have to look at both local and server firewalls.
- Also, review the Security event logs. You can monitor if there is a packet drop on a particular port-IP.
Message Analyzer is a powerful tool that can be used to perform such traces and check data in real-time. If you can master it, you can master the art of troubleshooting TCP/IP connectivity issues.
Read: How to reset TCP/IP or Internet Protocol in Windows.
