- Table of Contents
-
- 07-System
- 01-Hot backup
- 02-VRRP
- 03-Track
- 04-BFD
- 05-NQA
- 06-Basic log settings
- 07-Email server
- 08-Session log settings
- 09-NAT log settings
- 10-AFT log settings
- 11-Sandbox log settings
- 12-Threat log settings
- 13-Application audit log settings
- 14-NetShare log settings
- 15-URL filtering log settings
- 16-Data filtering log settings
- 17-Attack defense log settings
- 18-Reputation log settings
- 19-Bandwidth alarm logs
- 20-Configuration log settings
- 21-Security policy log
- 22-File filtering log settings
- 23-Terminal identification logging
- 24-Heartbeat log settings
- 25-WAF log settings
- 26-IP access logs
- 27-MAC access log
- 28-Load balancing logging
- 29-Bandwidth management logs
- 30-Context rate limit logging
- 31-Zero trust logs
- 32-Report settings
- 33-Session settings
- 34-Signature upgrade
- 35-Software upgrade
- 36-License management
- 37-IRF
- 38-IRF advanced settings
- 39-Contexts
- 40-vSystems
- 41-Administrators
- 42-Date and time
- 43-MAC address learning through a Layer 3 device
- 44-SNMP
- 45-Configuration management
- 46-Reboot
- 47-About
- 48-Fast Internet Access
- 49-Content moderation log settings
- 50-Drop statistics
- 51-License server
- Related Documents
-
Title | Size | Download |
---|---|---|
04-BFD | 16.03 KB |
Introduction
Bidirectional forwarding detection (BFD) provides a general-purpose, standard, medium- and protocol-independent fast failure detection mechanism. It can detect and monitor the connectivity of forwarding paths to detect communication failures quickly so that measures can be taken to ensure service continuity and enhance network availability.
BFD can uniformly and quickly detect the failures of the bidirectional forwarding paths between two devices for upper-layer protocols such as routing protocols. The hello mechanism used by upper-layer protocols needs seconds to detect a link failure, while BFD can provide detection measured in milliseconds.
BFD sessions use echo packets to implement detection. Echo packets are encapsulated into UDP packets with port number 3785.
The local end of the link sends echo packets to establish BFD sessions and monitor link status. The peer end does not establish BFD sessions and only forwards the packets back to the originating end. If the local end does not receive echo packets from the peer end within the detection time, it considers the session to be down.
Configure BFD
1. Select System > High Availability > BFD.
2. Configure BFD.
Table 1 BFD configuration items
Item |
Description |
Echo packet source IPv4 |
Specify a source IPv4 address for echo packets, which can be any valid unicast IPv4 address. As a best practice, specify an IPv4 address that is not on the same network segment as any local interfaces. This behavior prevents the peer from sending a large number of ICMP redirect packets, which might result in link congestion. |
Echo packet source IPv6 |
Specify a source IPv6 address for echo packets, which can only be a global unicast IPv6 address. As a best practice, specify an IPv6 address that is not on the same network segment as any local interfaces. This behavior prevents the peer from sending a large number of ICMPv6 redirect packets, which might result in link congestion. |