First time here? Check out the FAQ!
THIS IS A TEST INSTANCE. Feel free to ask and answer questions, but take care to avoid triggering too many notifications.
Ask Your Question
0

What this reset cause means ? [closed]

Hello !

Would anyone know what the reset cause "dt_antg" means ? I got this reset cause on my packet capture file and after searching I could not find anything that explain this cause. This reset cause appears below the SEQ/ACK analysis.

mpalinka's avatar
1
mpalinka
asked 2022-06-24 14:01:19 +0000
edit flag offensive 0 remove flag reopen merge delete

Closed for the following reason "the question is answered, right answer was accepted" by mpalinka 2022-06-30 17:36:17 +0000

Comments

What type of device is sending the TCP reset?

Chuckc's avatar Chuckc (2022-06-24 15:58:35 +0000) edit
more
  • delete

Hello ! The device is a oracle linux server sending this TCP reset to a F5 load balancer.

mpalinka's avatar mpalinka (2022-06-28 18:25:28 +0000) edit
more
  • delete
add a comment see more comments

1 Answer

0

Hello ! I could found the reason. Reset cause "dt_antg" is regarding a security software named Darktrace Antigena, this software when detect some unsual behaviour send a TCP reset package as if it was the source address.

mpalinka's avatar
1
mpalinka
answered 2022-06-30 17:35:32 +0000
edit flag offensive 0 remove flag delete link
more

Comments

add a comment see more comments