TCP Sequence Numbers

When TCP sends ACK=5000, it makes a powerful statement: "I have received every single byte from the beginning of the stream up to byte 4999, and I'm ready for byte 5000." This is cumulative acknowledgment—each ACK implicitly acknowledges all prior data.

Cumulative acknowledgments are elegant and robust, but they come with limitations. When a packet in the middle of a stream is lost, the ACK "sticks"—it can't skip ahead to report successfully received later data. The sender knows something is missing at the ACK position but doesn't know what arrived after.

This page explores cumulative acknowledgments in depth: their design, their behavior under loss, their limitations, and how SACK (Selective Acknowledgment) extends the model to provide richer feedback.

TCP's acknowledgment scheme is cumulative—each acknowledgment number confirms receipt of all bytes with sequence numbers less than the ACK value.

Formal Definition:

If a receiver sends ACK = N:

• It confirms receipt of all bytes with SEQ < N
• It implicitly acknowledges bytes from the initial sequence number up to N-1
• It requests byte N as the next expected byte

The "Contiguous Prefix" Property:

Cumulative ACKs always acknowledge a contiguous prefix of the byte stream. There can be no holes or gaps in the acknowledged range. If bytes 1000-1999 and 3000-3999 have been received but 2000-2999 are missing, the ACK is 2000—not 4000.

Cumulative acknowledgments behave distinctively when packets are lost. Let's trace through a scenario:

Scenario: Middle segment lost

Sender transmits 5 segments (1000 bytes each):

• Segment 1: SEQ=1000 → Received ✓
• Segment 2: SEQ=2000 → LOST ✗
• Segment 3: SEQ=3000 → Received ✓
• Segment 4: SEQ=4000 → Received ✓
• Segment 5: SEQ=5000 → Received ✓

Key Observations:

1. ACK sticks at the gap: Despite receiving segments 3, 4, and 5, the ACK remains at 2000

2. Receiver buffers out-of-order data: Segments 3, 4, 5 are not discarded—they're buffered awaiting segment 2

3. Duplicate ACKs indicate problems: Each out-of-order segment triggers the same ACK (2000), creating "duplicate ACKs"

4. Gap fill triggers jump: When segment 2 arrives, ACK jumps from 2000 to 6000, acknowledging everything at once

5. No retransmission of segments 3, 4, 5 needed: They were buffered, not lost

Duplicate ACKs—receiving the same acknowledgment number multiple times—signal to the sender that data is arriving out of order, likely because a segment was lost.

Why Duplicates Indicate Loss:

Every segment after the lost one triggers a duplicate ACK:

• Receiver can't advance RCV.NXT past the gap
• Each out-of-order segment causes an immediate ACK (no delay for out-of-order)
• The ACK value is the same each time—the next expected byte (the lost one)

Fast Retransmit (RFC 5681):

After receiving 3 duplicate ACKs (4 total ACKs with the same value), the sender retransmits the missing segment without waiting for a timeout:

dupACK count = 0
on receiving ACK:
  if ACK == last_ACK:
    dupACK count++
    if dupACK count >= 3:
      retransmit segment at ACK position

While cumulative ACKs are robust, they have significant limitations for loss recovery:

Limitation 1: Information Loss

The sender only knows where the gap starts, not what arrived after. Consider:

• Sender transmitted: SEQ 1000, 2000, 3000, 4000, 5000, 6000 (6 segments)
• Lost: SEQ 2000 and SEQ 5000
• Receiver ACKs: 2000, 2000, 2000, 2000... (stuck at first gap)

The sender can infer SEQ 2000 is lost, but it doesn't know SEQ 5000 is also lost until the first gap is filled.

Limitation 2: Tail Loss

When the last segments in a burst are lost, there are no subsequent segments to trigger duplicate ACKs. The sender must wait for a timeout:

• Sender transmits SEQ 1000, 2000, 3000 (last in window)
• SEQ 3000 is lost
• Receiver ACKs 3000 (acknowledging 1000, 2000)
• No more segments coming → no duplicate ACKs
• Sender waits for retransmission timeout (RTO)

Limitation 3: Retransmission Ambiguity

When a retransmitted segment is acknowledged, the sender can't tell if the ACK is for the original or the retransmit (Karn's algorithm addresses this by not using retransmission RTT samples).

RFC 2018 introduced Selective Acknowledgment (SACK) to provide richer feedback without abandoning cumulative ACKs.

How SACK Works:

SACK adds a TCP option that reports blocks of contiguous data received out of order. The cumulative ACK still reports the left edge of the gap, but SACK blocks describe what's been received beyond that point.

Cumulative ACK = 2000 (first gap at byte 2000)
SACK blocks = [3000-4000], [5000-7000]

This tells the sender:

• Everything before 2000: received
• Bytes 2000-2999: NOT received (the gap)
• Bytes 3000-3999: received (SACK block 1)
• Bytes 4000-4999: NOT received (another gap)
• Bytes 5000-6999: received (SACK block 2)

SACK Option Format:

• Kind: 5 (identifies this as SACK option)
• Length: Variable (4 + 8*n bytes, where n is number of blocks)
• Block Format: Each block is a (Left Edge, Right Edge) pair (4 bytes each)
• Maximum Blocks: Typically 3-4 blocks due to TCP option space limits (40 bytes max)

SACK Negotiation:

SACK must be negotiated during connection setup:

• Client sends SACK-Permitted option in SYN
• Server echoes SACK-Permitted in SYN-ACK
• If both agree, SACK options may appear in subsequent segments

RFC 2883 extends SACK with Duplicate SACK (DSACK)—a mechanism to report when duplicate data arrives. This provides valuable feedback about network behavior.

How DSACK Works:

A DSACK block reports receipt of data that was already acknowledged (via cumulative ACK) or already reported (via SACK). The first SACK block in a DSACK-bearing segment covers the duplicate range.

Why DSACK Matters:

1. Spurious Retransmit Detection: If the sender retransmitted unnecessarily, DSACK reveals this
2. RTT Estimation Improvement: Knowing retransmits were spurious improves timeout calculations
3. Reordering Metrics: DSACK helps measure network reordering extent
4. Congestion Control Adjustment: Spurious retransmits don't indicate congestion

Cumulative acknowledgments deeply influence TCP's congestion control behavior. Let's examine the connection:

ACK-Clocking:

ACKs provide "clocking" for the sender. Each ACK (roughly) indicates that some data has left the network, making room for new data:

• ACK arrives → sender knows data has been delivered
• Congestion window permits sending one more segment
• This creates self-clocking: send rate matches delivery rate

This "conservation of packets" principle (Van Jacobson) keeps the network stable.

The Cumulative ACK Limitation in Congestion Control:

Traditional congestion control (Reno, NewReno) struggles with multiple losses because cumulative ACKs provide limited information:

• After fast retransmit, NewReno enters "fast recovery"
• It exits fast recovery when the entire flight (at time of loss) is ACKed
• But if multiple segments were lost, each requires a round trip to discover and retransmit
• This creates "partial ACKs" that prolong recovery

SACK-based Congestion Control:

With SACK, algorithms like TCP SACK-based recovery can:

• Identify all lost segments in one round trip
• Retransmit them efficiently
• Track which segments are in flight vs. lost
• Exit recovery faster with fewer unnecessary retransmits

Cumulative acknowledgments form the foundation of TCP's reliability feedback mechanism. While they have limitations, extensions like SACK address the gaps. Let's consolidate what we've learned:

Module Complete:

You've now completed the TCP Sequence Numbers module. You understand:

• Why sequence numbers are necessary and how they work
• TCP's byte-oriented nature and its implications
• Initial Sequence Number selection and security
• Acknowledgment number semantics and processing
• Cumulative vs. selective acknowledgment strategies

These concepts form the foundation for understanding TCP's reliability mechanisms, which we'll explore further in subsequent modules on flow control, congestion control, and retransmission strategies.