Hi Team,
I have a question about azure virtual network.
When I try to replay one of my pcap files on the Azure platform. I got an "RST+ACK" block, sent by Azure platform( frame 27 in the attached png). Does Azure virtual network do some flow clear when transferring packets? And if so, could I close the flow clearing?
What we want to do is our pakcet can be sent to the far end and not blocked or modified by the under Azure platform. Is this possible?
Br,
Johney
Hello @JohneyWang-4761 ,
Apologies for the delay in response.
Could you please let us know your exact requirement?
You mentioned you are sending a packet. May I know what type of packet is being sent (application/service used) and from where to where this packet is being sent? Is it within Azure? Are you using Azure load balancer in your setup somewhere?
If the traffic is within an azure vm, you can refer the below doc which shows the common TCP/IP performance tuning techniques and some things to consider:
https://docs.microsoft.com/en-us/azure/virtual-network/virtual-network-tcpip-performance-tuning
If you are using Azure load balancer, it's default behavior is to silently drop flows when the idle timeout of a flow is reached.
Refer : https://docs.microsoft.com/en-us/azure/load-balancer/load-balancer-tcp-reset
Regards,
Gita
Hello @JohneyWang-4761 ,
Could you please provide the requested details for further discussion on this issue?
Regards,
Gita
Hi GitaraniSharmaMSFT-4262,
Thanks for your quick reply. For your questions:
1) What type of packet is being sent (application/service used) ?
The packet was captured by ourselves and its based on TCP flow, which may not has the normal TCP connecting and ending handshakes. For example, the server(10.24.1.50) send the FIN packet when it receives a RST flag.
2) From where to where this packet is being sent? Is it within Azure? Are you using Azure load balancer in your setup somewhere?
yes, Its within Azure, and the packet is sent between two Virtual network/subnets of My Azure environment.
And no load balancer is used.
Br,
Johney
Hello @JohneyWang-4761 ,
Thank you for providing the details.
I cannot think of any reason why Azure would block a packet within Azure when there is no load balancer involved.
From the packet capture, I see that the VM "FortiTester-v710-zhwang" (10.24.1.170) is sending all the FIN and RST packets. May I know if any specific application/service is running on this VM?
Regards,
Gita
Hi GitaraniSharmaMSFT-4262,
There's no specific app/service running on this VM, and What we do is just replay a pcap file(with FIN and RST) to the virtual network port.
So the TCP flags(FIN/RST) have an effect on the transferring of the Azure platform?
Br,
Johney
Hello @JohneyWang-4761 ,
I'm checking on this issue with the backend team. Will keep you posted on any updates.
Regards,
Gita
Hello @JohneyWang-4761 ,
The PG validated the below:
Azure platform can inject RST in load balancer scenarios and idle timeout, but that doesn't seem to be the case here.
PG has requested further details as below:
Did you verify that the server app isn't generating the RST?
Can we see the pcap on both ends?
Regards,
Gita
Hi GitaraniSharmaMSFT-4262,
Thanks for your response. And attached are the client/server pcaps.
I just wonder where the frame number 17 of azr_server.pcap comes from?
Regards,
Johney
21 people are following this question.
