Kaspersky SD-WAN
2.2
English

Contents

Using BFD to detect routing failures

Kaspersky SD-WAN supports the Bidirectional Forwarding Detection (BFD) protocol for fast (within one second) detection of network connectivity problems on links. When a problem is detected, BFD relays information about the problem from the

data plane
to the
control plane
.

Between BFD peers, a BFD session is established, as part of which they exchange control packets to detect network connectivity problems. If problems with network connectivity occur, the BFD session on the SD-WAN interface of the CPE device is terminated, after which route tables are rebuilt.

The table of BFD peers is displayed in the CPE template and on the CPE device:

  • To display the table of BFD peers in a CPE template, go to the SD-WAN → CPE templates menu section, click the CPE template, and select the BFD settings tab.
  • To display the table of BFD peers on a CPE device, go to the SD-WAN → CPE menu section, click the CPE device, and select the BFD settings tab.

Information about BFD peers is displayed in the following columns of the table:

  • Name is the name of the BFD peer.
  • IP address is the IPv4 address of the BFD peer.
  • Transmit interval (msec.) is the time interval in milliseconds for sending control packets from the CPE device to the BFD peer.
  • Receive interval (msec.) is the time interval in milliseconds for receiving control packets from the BFD peer on the CPE device. If no control packets are received from the BFD peer within the specified time, the CPE device considers this BFD peer unavailable.
  • Multiplier is the multiplier of the time interval for sending control packets specified in the BFD peer settings. This multiplier determines the number of milliseconds for which the CPE device waits for receipt of control packets from the BFD peer. If no control packets are received from the BFD peer within this time, the CPE device announces a network connectivity problem.
  • Management contains the actions that can be performed with the BFD peer.

In this section

Enabling or disabling the BFD protocol

Creating a BFD peer

Editing a BFD peer

Deleting a BFD peer
Page top
[Topic 244438]

Enabling or disabling the BFD protocol

You can enable or disable the BFD protocol in a CPE template or on a CPE device. BFD protocol enabled or disabled in the CPE template is automatically enabled or disabled on all CPE devices that use this CPE template.

To enable or disable the BFD protocol:

  1. Enable or disable the BFD protocol in one of the following ways:
    • If you want to enable or disable the BFD protocol in a CPE template, go to the SD-WAN → CPE templates menu section, click the CPE template, and select the BFD settings tab.
    • If you want to enable or disable the BFD protocol on a CPE device, go to the SD-WAN → CPE menu section, click the CPE device, select the BFD settings tab, and select the Override check box.

    A table of BFD peers is displayed.

  2. In the BFD drop-down list, select one of the following values:
    • Enabled
    • Disabled Default value.
  3. In the upper part of the settings area, click Save to save the settings of the CPE template or CPE device.
Page top
[Topic 256529]

Creating a BFD peer

You can create a BFD peer in a CPE template or on a CPE device. A BFD peer created in the CPE template is automatically created on all CPE devices that use this CPE template. Before creating a BFD peer, you must enable the BFD protocol.

To create a BFD peer:

  1. Create a BFD peer in one of the following ways:
    • If you want to create a BFD peer in a CPE template, go to the SD-WAN → CPE templates menu section, click the CPE template, and select the BFD settings tab.
    • If you want to create a BFD peer on a CPE device, go to the SD-WAN → CPE menu section, click the CPE device, select the BFD settings tab, and select the Override check box.

    A table of BFD peers is displayed.

  2. Click + BFD peer.
  3. This opens a window; in that window, in the Name field, enter the name of the BFD peer. Maximum length: 255 characters.
  4. In the IP address field, enter the IPv4 address of the BFD peer.
  5. In the Transmit interval (msec.) field, enter the time interval in milliseconds for sending control packets from the CPE device to the BFD peer. Range of values: 60 to 10,000.
  6. In the Receive interval (msec.) field, enter the time interval in milliseconds for receiving control packets from the BFD peer on the CPE device. If no control packets are received from the BFD peer within the specified time, the CPE device considers this BFD peer unavailable. Range of values: 60 to 10,000.
  7. In the Multiplier enter the multiplier of the time interval for sending control packets specified in the BFD peer settings. This multiplier determines the number of milliseconds for which the CPE device waits for receipt of control packets from the BFD peer. If no control packets are received from the BFD peer within this time, the CPE device announces a network connectivity problem. Range of values: 2 to 255.

    For example, if the time interval for sending control packets in the BFD peer settings is 200 milliseconds, and you specify a multiplier of 2, then, if after 400 milliseconds no control packets are received from that BFD peer, the CPE device announces a network connectivity problem.

  8. Click Create.

    The BFD peer is created and displayed in the table.

  9. In the upper part of the settings area, click Save to save the settings of the CPE template or CPE device.
Page top
[Topic 271040]

Editing a BFD peer

You can edit a BFD peer in a CPE template or on a CPE device. A BFD peer edited in the CPE template is automatically modified on all CPE devices that use this CPE template.

To edit a BFD peer:

  1. Edit a BFD peer in one of the following ways:
    • If you want to edit a BFD peer in a CPE template, go to the SD-WAN → CPE templates menu section, click the CPE template, and select the BFD settings tab.
    • If you want to edit a BFD peer on a CPE device, go to the SD-WAN → CPE menu section, click the CPE device, select the BFD settings tab, and select the Override check box.

    A table of BFD peers is displayed.

  2. Click Edit next to the BFD peer that you want to edit.
  3. This opens a window; in that window, if necessary, edit the BFD peer settings. For a description of the settings, see the instructions for creating a BFD peer.
  4. Click Save.

    The BFD peer is modified and updated in the table.

  5. In the upper part of the settings area, click Save to save the settings of the CPE template or CPE device.
Page top
[Topic 256533]

Deleting a BFD peer

You can delete a BFD peer in a CPE template or on a CPE device. A BFD peer deleted in the CPE template is automatically deleted on all CPE devices that use this CPE template.

Deleted BFD peers cannot be restored.

To delete a BFD peer:

  1. Delete a BFD peer in one of the following ways:
    • If you want to delete a BFD peer in a CPE template, go to the SD-WAN → CPE templates menu section, click the CPE template, and select the BFD settings tab.
    • If you want to delete a BFD peer on a CPE device, go to the SD-WAN → CPE menu section, click the CPE device, select the BFD settings tab, and select the Override check box.

    A table of BFD peers is displayed.

  2. Click Delete next to the BFD peer that you want to delete.
  3. This opens a window; in that window, click Delete.

    The BFD peer is deleted and is no longer displayed in the table.

  4. In the upper part of the settings area, click Save to save the settings of the CPE template or CPE device.
Page top
[Topic 256535]