TCP netstat TIME_WAIT & CLOSE_WAIT

fareast_mzh2025-03-26 16:41

TIME_WAIT is different from CLOSE_WAIT, and it's not necessarily a client-side fault. It happens due to how TCP handles connection termination.

Key Differences

TCP State Cause Who is responsible? Fix/Optimization
CLOSE_WAIT Server didn't close() the socket after client closed it. Server-side issue (socket left open). Ensure close(client_fd); is always called.
TIME_WAIT Server closed the socket first, waiting to ensure the client received the FIN. Normal behavior (not necessarily a problem). Use SO_LINGER or SO_REUSEADDR to mitigate excessive TIME_WAIT.

Why Does TIME_WAIT Happen?

  • When your server calls close(client_fd); , it sends a FIN to the client.
  • If the client follows the normal TCP closure process , it replies with ACK and sends its own FIN, which your server then ACKs.
  • Your server enters TIME_WAIT for 2×MSL (Maximum Segment Lifetime, usually 60s total) to ensure any delayed packets are handled before fully releasing the connection.

Is TIME_WAIT the Client's Fault?

  • If the client closes the connection first , the server goes to CLOSE_WAIT (which we fixed).
  • If the server closes first , TIME_WAIT is expected.
  • Too many TIME_WAIT sockets? It usually means many short-lived connections are being closed quickly.

How to Reduce TIME_WAIT Issues?

  1. Enable SO_REUSEADDR

    • Allows immediate reuse of the same port, even in TIME_WAIT state.
    c 复制代码 
    int opt = 1;
setsockopt(server_fd, SOL_SOCKET, SO_REUSEADDR, &opt, sizeof(opt));

  2. Use SO_LINGER to Force Immediate Closure

    • Not recommended unless necessary, as it can cause packet loss.
    c 复制代码 
    struct linger sl;
sl.l_onoff = 1;  // Enable linger
sl.l_linger = 2; // Close socket after 2 seconds
setsockopt(client_fd, SOL_SOCKET, SO_LINGER, &sl, sizeof(sl));

  3. Keep Connections Open Longer

    • If possible, reuse connections instead of opening/closing frequently.

  4. Tune TCP Stack (sysctl)

    • Reduce TIME_WAIT timeout if necessary:
    sh 复制代码 
    sudo sysctl -p | grep net.ipv4.tcp_fin_timeout  # net.ipv4.tcp_fin_timeout = 2
sysctl -w net.ipv4.tcp_fin_timeout=30

Conclusion

  • CLOSE_WAIT is a server-side issue (fixed by properly closing sockets).
  • TIME_WAIT is expected behavior when the server closes first.
  • Too many TIME_WAIT sockets? Use SO_REUSEADDR , linger options , or connection pooling if appropriate.
相关推荐
钟离墨笺37 分钟前
【网络协议】【http】http 简单介绍
网络·网络协议·http
一只小鱼儿吖1 小时前
代理IP协议详解HTTP、HTTPS、SOCKS5分别适用于哪些场景
tcp/ip·http·https
vortex51 小时前
如何为 Debian 和 Kali 系统更换软件源并更新系统
linux·运维·网络·网络安全·渗透测试·debian·kali
ssr——ssss2 小时前
网络华为HCIA+HCIP 防火墙
网络·华为·智能路由器
阿瑾06182 小时前
【网络】Socket套接字
linux·网络·c++·网络协议
chairon3 小时前
Ansible:playbook实战案例
运维·服务器·网络·ansible
王伯爵3 小时前
5G网络中A端口和Z端口
网络·5g·php
我也爱吃馄饨3 小时前
项目复盘:websocket不受跨域限制的原理
网络·websocket·网络协议
江城月下3 小时前
网络通信协议浅析:TCP/IP、UDP、HTTP 和 MQTT
物联网·tcp/ip·http·udp
倾云鹤3 小时前
okhttp3网络请求
android·网络
热门推荐
01DeepSeek各版本说明与优缺点分析02RAG 实践- Ollama+RagFlow 部署本地知识库03如何在WPS和Word/Excel中直接使用DeepSeek功能04FreeCAD傻瓜教程之创建参数化几何图形-螺旋体、平面、球体、椭球体、圆柱体、圆锥体、棱柱、椭圆05本地化部署AI知识库:基于Ollama+DeepSeek+AnythingLLM保姆级教程06从零安装 LLaMA-Factory 微调 Qwen 大模型成功及所有的坑07苍穹外卖面试总结08DeepSeek R1本地化部署 Ollama + Chatbox 打造最强 AI 工具09本地部署DeepSeek教程(Mac版本)10山东大学机试试题合集