Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
9777
Views
5
Helpful
10
Replies

Query regarding BFD

Go to solution
ankurs2008
Level 1
Level 1

‎05-18-2010 08:16 AM - edited ‎03-11-2019 10:47 AM

Hi

Is BFD (Bidirectional Forwarding Detection) supported in any of the ASA Versions ?

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Jon Marshall
Hall of Fame
Hall of Fame
In response to ankurs2008

‎05-19-2010 03:33 AM 

ankurs2008 wrote:
Hi
can u please let me know how it is accomplished via ACL.Can you please look at the below URL and confirm whether this feature is really supported on asa ?
http://www.cisco.com/en/US/docs/ios/12_0s/feature/guide/fs_bfd.html

Just to clarify. Do you mean can the ASA participate in BFD ie. does it support it ? In which case as far as i know no it doesn't.

If you mean can BFD be used throgh a firewall then yes you should be able to do this. You would need to allow the BFD ports -

bfd-control     Port 3784 TCP        BFD Control Protocol
bfd-control     Port 3784 UDP        BFD Control Protocol
#                                    [RFC-ietf-bfd-v4v6-1hop-10.txt]
bfd-echo        Port 3785 TCP        BFD Echo Protocol 
bfd-echo        Port 3785 UDP        BFD Echo Protocol
#                                    [RFC-ietf-bfd-v4v6-1hop-10.txt]

Jon

View solution in original post

10 Replies 10

Go to solution
Panos Kampanakis
Cisco Employee
Cisco Employee

‎05-18-2010 09:47 AM

I believe BFD works over IP, so opening ACLs should do the trick.

There is no inspection on the ASA for it, that is for sure, but I don't think one will be needed.

I haven't tested, so not 100% sure.

PK

0 Helpful

Go to solution
ankurs2008
Level 1
Level 1
In response to Panos Kampanakis

‎05-19-2010 03:02 AM

Hi

can u please let me know how it is accomplished via ACL.Can you please look at the below URL and confirm whether this feature is really supported on asa ?

http://www.cisco.com/en/US/docs/ios/12_0s/feature/guide/fs_bfd.html

0 Helpful

Go to solution
Jon Marshall
Hall of Fame
Hall of Fame
In response to ankurs2008

‎05-19-2010 03:33 AM 

ankurs2008 wrote:
Hi
can u please let me know how it is accomplished via ACL.Can you please look at the below URL and confirm whether this feature is really supported on asa ?
http://www.cisco.com/en/US/docs/ios/12_0s/feature/guide/fs_bfd.html

Just to clarify. Do you mean can the ASA participate in BFD ie. does it support it ? In which case as far as i know no it doesn't.

If you mean can BFD be used throgh a firewall then yes you should be able to do this. You would need to allow the BFD ports -

bfd-control     Port 3784 TCP        BFD Control Protocol
bfd-control     Port 3784 UDP        BFD Control Protocol
#                                    [RFC-ietf-bfd-v4v6-1hop-10.txt]
bfd-echo        Port 3785 TCP        BFD Echo Protocol 
bfd-echo        Port 3785 UDP        BFD Echo Protocol
#                                    [RFC-ietf-bfd-v4v6-1hop-10.txt]

Jon

Go to solution
ankurs2008
Level 1
Level 1
In response to Jon Marshall

‎05-19-2010 03:58 AM

thanks , thats what i wanted to know if we can confiure BFD on ASA or not , i believe we can not . Thanks for the help !

0 Helpful

Go to solution
Sumanta Ghosh
Level 1
Level 1
In response to ankurs2008

‎04-07-2018 04:01 AM

Hi Experts

 

BFD is not working in ASA 9.9 running on FPR 9300. Maybe limited or no support?

 

Tried both single/multi hop BFD template and map.

 

Regards,

Sumanta Ghosh.

0 Helpful

Go to solution
airekoth
Level 1
Level 1
In response to Jon Marshall

‎07-27-2022 11:19 PM

I totally agreed with your answer my problem is solved. I am very happy.

 

Have a nice day to all.

0 Helpful

Go to solution
muellerjohn
Level 1
Level 1

‎03-24-2022 01:12 PM - edited ‎03-24-2022 01:14 PM

BFD (Bidirectional Forwarding Detection) is a super-fast protocol that is able to detect link failures within milliseconds or even microseconds... All (routing) protocols have some sort of mechanism to detect link failures. OSPF uses hello packets and a dead interval, EIGRP uses hello packets and a hold-down timer. etc.
 
Hope this reply is useful for you,
 
Thanks
 
0 Helpful

Go to solution
Tomajupp
Level 1
Level 1

‎03-24-2022 01:58 PM

Hi, I have bit effort to answer your question.

 

BFD (Bidirectional Forwarding Detection) is a super fast protocol that is able to detect link failures within milliseconds or even microseconds.. All (routing) protocols have some sort of mechanism to detect link failures. For more detail see https://community.cisco.com/t5/network-security/query-regarding-bfd/td-p/1493452-apkbik

 

Thanks

0 Helpful

Go to solution
teatimeresults40
Level 1
Level 1

‎04-23-2022 01:38 PM - edited ‎04-23-2022 01:58 PM

Thanks to all for your kind information. I am going to bookmark this thread https://community.cisco.com/t5/network-security/query-regarding-bfd/td-p/1493452-teatime

0 Helpful

Go to solution
airekoth
Level 1
Level 1

‎07-27-2022 11:22 PM

.

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card