Query regarding BFD

Answered Question
May 18th, 2010

Hi

Is BFD (Bidirectional Forwarding Detection) supported in any of the ASA Versions ?

Correct Answer by Jon Marshall about 6 years 9 months ago

ankurs2008 wrote:

Hi

can u please let me know how it is accomplished via ACL.Can you please look at the below URL and confirm whether this feature is really supported on asa ?

http://www.cisco.com/en/US/docs/ios/12_0s/feature/guide/fs_bfd.html

Just to clarify. Do you mean can the ASA participate in BFD ie. does it support it ? In which case as far as i know no it doesn't.

If you mean can BFD be used throgh a firewall then yes you should be able to do this. You would need to allow the BFD ports -

bfd-control     Port 3784 TCP        BFD Control Protocol
bfd-control     Port 3784 UDP        BFD Control Protocol
#                                    [RFC-ietf-bfd-v4v6-1hop-10.txt]
bfd-echo        Port 3785 TCP        BFD Echo Protocol
bfd-echo        Port 3785 UDP        BFD Echo Protocol
#                                    [RFC-ietf-bfd-v4v6-1hop-10.txt]

Jon

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 5 (1 ratings)
Loading.
Panos Kampanakis Tue, 05/18/2010 - 09:47

I believe BFD works over IP, so opening ACLs should do the trick.

There is no inspection on the ASA for it, that is for sure, but I don't think one will be needed.

I haven't tested, so not 100% sure.

PK

Correct Answer
Jon Marshall Wed, 05/19/2010 - 03:33

ankurs2008 wrote:

Hi

can u please let me know how it is accomplished via ACL.Can you please look at the below URL and confirm whether this feature is really supported on asa ?

http://www.cisco.com/en/US/docs/ios/12_0s/feature/guide/fs_bfd.html

Just to clarify. Do you mean can the ASA participate in BFD ie. does it support it ? In which case as far as i know no it doesn't.

If you mean can BFD be used throgh a firewall then yes you should be able to do this. You would need to allow the BFD ports -

bfd-control     Port 3784 TCP        BFD Control Protocol
bfd-control     Port 3784 UDP        BFD Control Protocol
#                                    [RFC-ietf-bfd-v4v6-1hop-10.txt]
bfd-echo        Port 3785 TCP        BFD Echo Protocol
bfd-echo        Port 3785 UDP        BFD Echo Protocol
#                                    [RFC-ietf-bfd-v4v6-1hop-10.txt]

Jon

ankurs2008 Wed, 05/19/2010 - 03:58

thanks , thats what i wanted to know if we can confiure BFD on ASA or not , i believe we can not . Thanks for the help !

Actions

This Discussion