Skip to content

Gateways🔗

Gateways enable traffic flow in and out of a network or tenant to a device external to the Verity managed network.

Creating a Gateway🔗

  • From within the Gateways window (Tenancy -> Gateways) select the Tenant to assign the Gateways to ().

  • Click the Add a new Gateway button (). Type a name in the field that appears and click Create Gateway ().

  • The Gateway Enable switch defaults to off (). The Tenant field shows which tenant the Gateway is assigned to ().

The user must specify BGP Neighbor address AS-numbers at a minimum. If the Tenant is going to egress from the network on an 802.1q tagged interface, the VLAN should be specified in the field titled Egress VLAN.

Gateway Modes🔗

Gateways can be one of several different modes. The Gateway Mode field defines how the software handles and routes traffic within the network. It determines whether routing decisions are based on a statically defined default gateway, static routes, traditional BGP routing, or new enhancements to BGP to support dynamic neighbors ().

  • Default Route: A single static default route.
  • Static Route: Uses manually configured static routes, no dynamic routing.
  • Static BGP: Establishes BGP sessions with manually configured BGP neighbors. The BGP neighbors are explicitly defined by their IP addresses, and no dynamic peer discovery occurs within the subnet.
  • Dynamic BGP: BGP neighbors are dynamically discovered within a subnet, leading to the creation of multiple BGP sessions from a single tenant gateway object.

BFD Configuration🔗

BFD (Bidirectional Forwarding Detection) is a network protocol used to detect faults in the forwarding path between two routers or network devices. It uses heartbeat-timed messages that are exchanged between devices at regular intervals to monitor the status of the link.

  • BFD Receive Interval: Configure the minimum interval during which the system can receive BFD control packets.
  • BFD Transmission Interval: Configure the minimum interval during which the system can send BFD control packets.
  • BFD Detect Multiplier: Configure detection multiplier to determine packet loss.

  • BFD Multihop: Enable BFD Multi-Hop for Neighbor. This feature is used to detect failures in the forwarding path between BGP peers.

    In a multi-hop BGP session, there are intermediate switches between the two devices where the session is configured. Instead of the BFD packets traveling directly from switch "A" (where the BGP session originates) to switch "B" (where it terminates), they pass through several intermediate switches along the route.

    Enabling multi-hop BFD is optional, as it depends on the specific requirements of the BGP session. The operator must assess whether sub-second BGP session failure detection is necessary. If such detection is not critical, or if enabling it might result in false positives, it may be better to leave this feature disabled.

Gateway Profiles