Sockets: Advanced Topics 1275To understand the second purpose of the TIME_WAIT state—ensuring the expiration
of old duplicate segments in the network—we must remember that the retransmission
algorithm used by TCP means that duplicate segments may be generated, and that,
depending on routing decisions, these duplicates could arrive after the connection
has been closed. For example, suppose that we have a TCP connection between two
socket addresses, say, 204.152.189.116 port 21 (the FTP port) and 200.0.0.1 port 50,000.
Suppose also that this connection is closed, and that later a new connection is estab-
lished using exactly the same IP addresses and ports. This is referred to as a new incar-
nation of the connection. In this case, TCP must ensure that no old duplicate
segments from the previous incarnation are accepted as valid data in the new incarna-
tion. This is done by preventing a new incarnation from being established while there
is an existing TCP in the TIME_WAIT state on one of the endpoints.
A frequent question posted to online forums is how to disable the TIME_WAIT
state, since it can lead to the error EADDRINUSE (“Address already in use”) when a
restarted server tries to bind a socket to an address that has a TCP in the TIME_WAIT
state. Although there are ways of doing this (see [Stevens et al., 2004]), and also ways
of assassinating a TCP in this state (i.e., causing the TIME_WAIT state to terminate
prematurely, see [Snader, 2000]), this should be avoided, since it would thwart the
reliability guarantees that the TIME_WAIT state provides. In Section 61.10, we
look at the use of the SO_REUSEADDR socket option, which can be used to avoid the
usual causes of the EADDRINUSE error, while still allowing the TIME_WAIT to provide
its reliability guarantees.61.7 Monitoring Sockets: netstat
The netstat program displays the state of Internet and UNIX domain sockets on a
system. It is a useful debugging tool when writing socket applications. Most UNIX
implementations provide a version of netstat, although there is some variation in
the syntax of its command-line arguments across implementations.
By default, when executed with no command-line options, netstat displays
information for connected sockets in both the UNIX and Internet domains. We
can use a number of command-line options to change the information displayed.
Some of these options are listed in Table 61-1.Table 61-1: Options for the netstat commandOption Description
-a Display information about all sockets, including listening sockets
-e Display extended information (includes user ID of socket owner)
-c Redisplay socket information continuously (each second)
-l Display information only about listening sockets
-n Display IP addresses, port numbers, and usernames in numerical form
-p Show the process ID and name of program to which socket belongs
--inet Display information for Internet domain sockets
--tcp Display information for Internet domain TCP (stream) sockets
--udp Display information for Internet domain UDP (datagram) sockets
--unix Display information for UNIX domain sockets