Cloud
September 29, 2021 By Gilberto Tellez
Vaishali Pandya
2 min read

Introducing support for Bidirectional Forwarding Detection and Message Digest 5 authentication.

IBM Cloud Direct Link allows direct, private connectivity between your infrastructure and both IBM Cloud VPC and IBM classic infrastructure. The speed and reliability of IBM Cloud Direct Link extend your organization’s data center network and offers more consistent, higher-throughput connectivity, keeping traffic within the IBM Cloud network.

Today, we are pleased to announce the general availability of the following new Border Gateway Protocol (BGP) features for both Direct Link Dedicated and Connect offerings.   

Bidirectional Forwarding Detection (BFD) 

BFD quickly detects faults in a network between two routers or switches connected by a link. It provides a single, standardized method for failover detection at any protocol layer over any media. BFD also provides a way for network administrators to detect forwarding-path failures at a uniform rate, rather than the variable rates of different routing protocol hello mechanisms. Network profiling and planning is easier, and reconvergence time is predictable, consistent and significantly faster.

BFD support comes pre-enabled with your direct link. However, BFD doesn’t start working until you activate the feature during direct link creation or on an existing direct link. No prerequisites are required. Simply configure this feature with the following values:

  • Interval: The interval is the minimum time (in milliseconds) expected to occur between when the local routing device sends BFD hello packets and the reply from its neighbor. This value can range from 300 to 255,000 milliseconds.
  • Multiplier: The multiplier is the number of times that a hello packet is missed before BFD declares the neighbor down. This value can range from 1 to 255. The default multiplier value is 3.

BGP Message Digest 5 (MD5) Authentication

BGP MD5 authentication adds an additional layer of security between two BGP peers by verifying each transmitted message sent through a BGP session. When authentication is activated, BGP authenticates every TCP segment from its peer and checks the source of each routing update. 

Similar to BFD, BGP MD5 authentication is pre-enabled with your direct link. You can configure MD5 authentication during direct link creation or configure MD5 on an existing direct link. You must configure MD5 authentication with the same password on both BGP peers; otherwise, a connection can’t be made between the peers.

Flexibility to update your BGP configuration at any time

Instead of being able to specify a BGP Autonomous System Number (ASN) and IP addresses only during initial configuration, you can now edit these values any time you choose.

Important: Keep in mind that the following tasks result in downtime where traffic is interrupted:

  • Activating and deactivating MD5, or rotating MD5 key authentication after a BGP session is established 
  • Activating and deactivating BFD after establishing a BGP session
  • Modifying BGP ASN and BGP peer IPs after initial configuration

You can use the UI, CLI, API or Terraform to configure BFD and BGP MD5 authentication. For more information about these new features, see Getting started with IBM Cloud Direct Link.

Gilberto Tellez
Offering Manager, Direct Link and Colocation Cloud
Vaishali Pandya
Networking Services

More from Cloud
June 26, 2024

A major upgrade to Db2® Warehouse on IBM Cloud®

2 min read - We’re thrilled to announce a major upgrade to Db2® Warehouse on IBM Cloud®, which introduces several new capabilities that make Db2 Warehouse even more performant, capable, and cost-effective. Here's what's new Up to 34 times cheaper storage costs The next generation of Db2 Warehouse introduces support for Db2 column-organized tables in Cloud Object Storage. Db2 Warehouse on IBM Cloud customers can now store massive datasets on a resilient, highly scalable storage tier, costing up to 34x less. Up to 4 times…

June 24, 2024

Manage the routing of your observability log and event data 

4 min read - Comprehensive environments include many sources of observable data to be aggregated and then analyzed for infrastructure and app performance management. Connecting and aggregating the data sources to observability tools need to be flexible. Some use cases might require all data to be aggregated into one common location while others have narrowed scope. Optimizing where observability data is processed enables businesses to maximize insights while managing to cost, compliance and data residency objectives.  As announced on 29 March 2024, IBM Cloud® released its next-gen observability…

June 19, 2024

The recipe for RAG: How cloud services enable generative AI outcomes across industries

4 min read - According to research from IBM®, about 42% of enterprises surveyed have AI in use in their businesses. Of all the use cases, many of us are now extremely familiar with natural language processing AI chatbots that can answer our questions and assist with tasks such as composing emails or essays. Yet even with widespread adoption of these chatbots, enterprises are still occasionally experiencing some challenges. For example, these chatbots can produce inconsistent results as they’re pulling from large data stores…

IBM Newsletters

 Get our newsletters and topic updates that deliver the latest thought leadership and insights on emerging trends.
Subscribe now More newsletters