Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results forĀ 
Search instead forĀ 
Did you mean:Ā 
cancel
Start a conversation
391
Views
0
Helpful
1
Replies

Unreassambled packets

endpoint
Level 1
Level 1

ā€Ž02-19-2010 11:38 PM - edited ā€Ž03-06-2019 09:48 AM

Hello all

please check attached tcpdump; trying to troubleshoot communication between two hosts, not sure where to start.
Regards,

Labels:
61294-ray02100000.zip
0 Helpful
1 Reply 1

Sergei Vasilenko
Cisco Employee
Cisco Employee

ā€Ž02-24-2010 02:38 AM

Hello,

As per snoop file, the TCP packets sent from 10.23.44.62 to 10.23.205.11 are 8274 bytes (w/o ethernet FCS) in size at Layer2 and

has  DF-bit set in IP header (ip pdu size is 8260).

And the sniffer traces just cuptured/contains info for the headers (first 96 bytes), not full frames w payload.

So that's why the errors aboutt unreassambled pkts seen.

It could be setting of the sniffer application and/or netdr on PC were capture done.

From another sied, the DF bit is set for those big packets, which mean no fragmentation is allowed for them in transit.

So depending on the network topology and the settings on the transit devices/interfaces,

if some of them does not support such a big MTUs, they could just drop those frames on transit.

Thanks,

Sergey

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card