Manualshelf

TMS zl Management and Configuration Guide ST.1.0.090213

ManualsBrandsHP ManualsComputer AccessoriesHP ProCurve Switch xl Access Controller Module
341342343344345346347348349350
4-94
Firewall
Attack Checking
Figure 4-64. TCP Sliding Window
In Figure 4-64, as bytes are acknowledged by the server, the window “slides”
to the right. That is why it is called a sliding window. The TMS zl Module allows
you to set the range of bytes within the window, called the sequence range.
The advantages and disadvantages of the sequence range sizes are discussed
in the following table.
Table 4-7. Advantages and Disadvantages of Sequence Number Range Sizes
Sequence number ranges are connection-specific, making them hard to apply
universally. Adjusting the range is only suggested when users have similar
characteristics and endpoints can be identically configured. For all other
networks, it is suggested that you rely on the system default.
If you decide to adjust the sequence number window, two factors are
important:
End-to-end bandwidth
Round-trip latency
This refers to the amount of time between transmission and acknowledge-
ment. Longer latencies allow more data to be on the network at once. For
example, a network with an 80-millisecond delay supports 8 times more
data “in the lines” than a network with a 10-millisecond delay.
Sequence Number
Range
Advantages Disadvantages
Small Limits window of opportunity for sequence-
number attacks.
Decreases amount of packets sent before
acknowledgment is received, forcing the
sender to stop transmitting while waiting
for acknowledgment.
Large Allows more octets to be sent at once. Makes error-recovery more difficult,
degrading performance.
May allow too much data “in the lines,”
diminishing network throughput.