OUR EXPERT
You can find many UDP eBPF tools along with their implementation in the BPF Performance Tools book by Brendan Gregg. Generally speaking, this is the best book to learn more about eBPF. However, be prepared for lots of reading and experimenting.
TCP/IP is a family of protocols that help the internet to operate. The name comes from its two most well-known protocols: TCP and IP. TCP stands for Transmission Control Protocol, TCP software transmits data between machines using segments, which are also called TCP packets. The main characteristic of TCP is that it is a reliable protocol, which means that it makes sure that a packet was delivered without needing any extra code from the programmer. If there is no proof of packet delivery, TCP sends that particular packet again – this continues until there is proof of delivery.
The status of a TCP connection from the client side can be one of SYN-Sent, ESTABLISHED, FIN-WAIT-1, FIN-WAIT-2 or TIME_WAIT. The status of a TCP connection from the server side can be one of LISTEN, SYN-RCVD, CLOSE-WAIT, LAST-ACK, CLOSED or CLOSING.
All the tools you need are here – usually more than we need – but how do you approach a networking issue rationally? Such a strategy might include the following steps:
WireShark is the ultimate tool for looking into TCP/IP traffic and analysing network traffic of almost any kind. You can learn more about WireShark at www.wireshark. org and by looking at its documentation site at https:// www.wireshark. org/docs/.
OUR EXPERT
Mihalis Tsoukalos is a systems engineer and a technical writer. He is the author of Go Systems Programming and Mastering Go, 3rd edition.
Mihalis Tsoukalos is a systems engineer and a technical writer. He is the author of Go Systems Programming and Mastering Go, 3rd edition.