Query regarding BFD

Answered Question
May 18th, 2010
User Badges:

Hi


Is BFD (Bidirectional Forwarding Detection) supported in any of the ASA Versions ?

Correct Answer by Jon Marshall about 7 years 1 month ago

ankurs2008 wrote:


Hi


can u please let me know how it is accomplished via ACL.Can you please look at the below URL and confirm whether this feature is really supported on asa ?


http://www.cisco.com/en/US/docs/ios/12_0s/feature/guide/fs_bfd.html


Just to clarify. Do you mean can the ASA participate in BFD ie. does it support it ? In which case as far as i know no it doesn't.


If you mean can BFD be used throgh a firewall then yes you should be able to do this. You would need to allow the BFD ports -


bfd-control     Port 3784 TCP        BFD Control Protocol
bfd-control     Port 3784 UDP        BFD Control Protocol
#                                    [RFC-ietf-bfd-v4v6-1hop-10.txt]
bfd-echo        Port 3785 TCP        BFD Echo Protocol
bfd-echo        Port 3785 UDP        BFD Echo Protocol
#                                    [RFC-ietf-bfd-v4v6-1hop-10.txt]


Jon

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 5 (1 ratings)
Loading.
Panos Kampanakis Tue, 05/18/2010 - 09:47
User Badges:
  • Cisco Employee,

I believe BFD works over IP, so opening ACLs should do the trick.

There is no inspection on the ASA for it, that is for sure, but I don't think one will be needed.

I haven't tested, so not 100% sure.


PK

Correct Answer
Jon Marshall Wed, 05/19/2010 - 03:33
User Badges:
  • Super Blue, 32500 points or more
  • Hall of Fame,

    Founding Member

  • Cisco Designated VIP,

    2017 LAN, WAN

ankurs2008 wrote:


Hi


can u please let me know how it is accomplished via ACL.Can you please look at the below URL and confirm whether this feature is really supported on asa ?


http://www.cisco.com/en/US/docs/ios/12_0s/feature/guide/fs_bfd.html


Just to clarify. Do you mean can the ASA participate in BFD ie. does it support it ? In which case as far as i know no it doesn't.


If you mean can BFD be used throgh a firewall then yes you should be able to do this. You would need to allow the BFD ports -


bfd-control     Port 3784 TCP        BFD Control Protocol
bfd-control     Port 3784 UDP        BFD Control Protocol
#                                    [RFC-ietf-bfd-v4v6-1hop-10.txt]
bfd-echo        Port 3785 TCP        BFD Echo Protocol
bfd-echo        Port 3785 UDP        BFD Echo Protocol
#                                    [RFC-ietf-bfd-v4v6-1hop-10.txt]


Jon

ankurs2008 Wed, 05/19/2010 - 03:58
User Badges:

thanks , thats what i wanted to know if we can confiure BFD on ASA or not , i believe we can not . Thanks for the help !

Actions

This Discussion