BGP - FSM - Active state

MTU - MSS and Jumbo Frames

TCP - Header

TCP - SEQ and ACK values

TCP - factors affecting segment size

TCP SYN timeout

TCP phantom byte


Certainly! The [TCP](/tcp) three-way handshake is a method used to establish a connection between a client and a server in the Transmission Control Protocol (TCP) segment of the Internet Protocol Suite. This handshake ensures both sides are ready for data transmission and establishes parameters that will remain in place for the duration of the connection.

Here's a step-by-step breakdown:

1. **SYN** (Synchronize Sequence Numbers)
   - The client wants to establish a connection with a server, so it sends a segment with the SYN flag set. This segment also specifies an initial sequence number (let's say `x`).
   - This sequence number doesn't have to be 0; it's typically a random number to add security against certain types of attacks (like sequence number prediction).

2. **SYN + ACK** (Synchronize and Acknowledge)
   - Upon receiving the SYN segment, the server replies with a segment that has both the SYN and ACK flags set. 
   - The acknowledgment number is set to one more than the received initial sequence number, i.e., `x + 1`.
   - The server also selects its own initial sequence number for the data it will send to the client. Let's call this number `y`.

3. **ACK** (Acknowledge)
   - The client sends an ACK segment back to the server. 
   - The sequence number is `x + 1` (because it's continuing from the last sequence number it used).
   - The acknowledgment number will be `y + 1` to acknowledge the server's SYN.

To summarize the sequence and acknowledgment numbers:

1. Client -> Server: SYN with Sequence Number = `x`
2. Server -> Client: SYN + ACK with Sequence Number = `y` and Acknowledgment Number = `x + 1`
3. Client -> Server: ACK with Sequence Number = `x + 1` and Acknowledgment Number = `y + 1`

After this handshake, both sides have agreed on the initial sequence numbers, and they can begin exchanging data.

As data segments are exchanged:

- The sequence number for each side will increase by the number of bytes of data sent.
- The acknowledgment number sent by each side will always be the next expected sequence number from the other side, which is essentially the last correctly received sequence number plus the number of bytes received.

This system of sequence and acknowledgment numbers is essential for ensuring reliable data transfer in TCP, allowing it to detect and retransmit missing or out-of-order segments.

For more information about the various aspects of this exchange, take a look at the following notes:

* [TCP SYN timeout](/tcp-syn-timeout)
* [TCP - factors affecting segment size](/tcp-factors-affecting-segment-size)
* [TCP phantom byte](/tcp-phantom-byte)
* [TCP MSS and window size](/tcp-mss-and-window-size)
* [MTU - MSS and Jumbo Frames](/mtu-mss-and-jumbo-frames)


Links:

https://forum.networklessons.com/t/introduction-to-tcp-and-udp/862/24

https://networklessons.com/cisco/ccna-routing-switching/tcp-window-size-scaling/

https://networklessons.com/cisco/ccna-routing-switching/introduction-to-tcp-and-udp/

TCP - Three-way handshake

Security authentication on VTY lines

Security keyrings

Segment Routing

Serial Interface default broadcast address

Session Border Controller

Session Initiation Protocol

Show open TCP-UDP ports on Cisco router

Spanning Tree Protocol (STP)

Spine and leaf architecture - connections to leaf switches

Spine and leaf architecture - connections to spine switches

Spine and leaf architecture - reducing latency

Split-horizon

StackWise Virtual

Stackwise election process

Stackwise user priority

Subscriber templating

Summarization

Supernetting

Switch configuring a routed port

Switch high availability options

Switch protected port limitations

Switch protected port

Switching - CEF

Switching - Media Access Control (MAC) addresses

Switching - Process switching

Switching - backplane

Switching - cut through

Switching - fast switching

Switching - show cable-diagnostics

Switching - store and forward

Switching - switch fabric

Switching - switched virtual interface (SVI)

Switching - switchport autostate command

Switching

Switchport - IEEE 802.1q

Switchport - ISL

Switchport access

Switchport modes

Switchport trunk configuration ignores access commands

Switchport trunk encapsulation

Switchport trunk

Symmetric Digital Subscriber Line (SDSL)

Syslog - terminal monitor

Syslog relay or proxy

Syslog severity levels

TCP - Congestion control

TCP - Slow start

TCP - Urgent pointer field

TCP - Window Size Scaling

TCP - role of checksum field

TCP MSS and window size

TCP RST flag

TCP header options

TCP-IP model

TFTP

Tcl Shell

Telnet

Time to live

Traceroute - Interpreting output

Traceroute asterisk and !H responses

Traceroute

Transparent Cisco IOS Firewall use cases

Transport Layer port number

Troubleshooting - using Telnet to test transport layer ports

Troubleshooting a slow network

Troubleshooting high CPU and memory usage on a switch

UDP - Header

UDP - Maximum Datagram Size

Unicast Reverse Path Forwarding (uRPF)

Unicast traffic

Unknown unicast traffic

Upgrade your R&S skills to modern networking

VACL - Changes to ACL are active immediately

VLAN - Extended Range

VLAN - Native VLAN best practices

VLAN - Native VLAN on a router on a stick

VLAN - Private VLAN

VLAN - VLAN IDs 0 and 4095

VLAN Access Lists

VLAN Mapping

VLAN SVI status

VLAN Tag

VLAN control frames

VLAN

VLANs - 802.1Q tunneling (QinQ)

VLANs - Dynamic VLAN membership (VMPS)

VLANs - QinQ and CDP

VLANs - Vlans allowed and active in management domain

VLANs - when a tagged frame arrives on an access port

VLANs SVI

VPN - IKEv2 peer address of 0.0.0.0 0.0.0.0

VPN - crypto keepalive

TCP - Three-way handshake

Links to this page: