Kaspersky NGFW supports the Bidirectional Forwarding Detection (BFD) protocol for fast (within one second) detection of network connectivity problems on links. When a problem is detected, BFD relays information about the problem from the data plane to the control plane.
Between BFD peers, a BFD session is established, as part of which they exchange control packets to detect network connectivity problems. If problems with network connectivity occur, the BFD session on the interface of the NGFW device is terminated, after which route tables are rebuilt.
You can view the table of BFD peers in a network template and on a NGFW device: To do this:
In the main menu of the Open Single Management Platform Console, go to the Application & Services → NGFW section.
Go to the BFD section of settings in one of the following ways:
If you want to view the table of BFD peers in a network template, in the menu, select the Network templates tab, click the network template, and select the Routing → BFD section.
If you want to view the table of BFD peers on a device, in the menu, select the Devices tab, click the device and select the Routing → BFD section.
Information about BFD peers is displayed in the following columns of the table:
Name is the name of the BFD peer.
IP address is the IPv4 address of the BFD peer.
Transmit interval (ms) is the time interval in milliseconds for sending control packets from the NGFW device to the BFD peer.
Receive interval (ms) is the time interval in milliseconds for receiving control packets from the BFD peer on the NGFW device. If no control packets are received from the BFD peer within the specified time, the NGFW device considers this BFD peer unavailable.
Multiplier is the multiplier of the time interval for sending control packets specified in the BFD peer settings. This multiplier determines the number of milliseconds for which the NGFW device waits for receipt of control packets from the BFD peer. If no control packets are received from the BFD peer within this time, the NGFW device announces a network connectivity problem.
VRF is a previously created virtual routing and forwarding table.