FortiOS Carrier GTP load balancing
if you are operating a FortiGate-6000 system that is licensed for FortiOS Carrier (also called FortiCarrier), you can use the information in this section to optimize GTP performance. The commands and settings in this chapter only apply if your FortiGate-6000 has a FortiOS Carrier license.
Optimizing NPU GTP performance
You can use the following command to optimize GTP performance:
config system npu
set gtp-enhance-mode enable
end
Enabling gtp-enhance-mode usually improves GTP performance.
GTP-C load balancing
By default and for the best GTP-C tunnel setup and throughput performance, FortiGate-6000 systems licensed for FortiOS Carrier load balance GTP-C traffic to all FPCs. Normally you should use this default configuration for optimum GTP-C performance.
If you want GTP-C traffic to only be processed by the primary (or master) FPC, you can edit the following flow rule and set status to enable. When enabled, this flow rule sends all GTP-C traffic to the primary FPC. Enabling this flow rule can reduce GTP performance, since all GTP-C tunnel setup sessions will be done by the primary FPC and not distributed among all of the FPCs.
config load-balance flow-rule
edit 17
set status enable
set vlan 0
set ether-type ipv4
set src-addr-ipv4 0.0.0.0 0.0.0.0
set dst-addr-ipv4 0.0.0.0 0.0.0.0
set protocol udp
set src-l4port 0-0
set dst-l4port 2123-2123
set action forward
set forward-slot master
set priority 5
set comment "gtp-c to master blade"
end
GTP-U load balancing
To load balance GTP-U traffic, in addition to enabling gtp-enhance-mode, you should enable the following option:
config load-balance setting
set gtp-load-balance enable
end
Enabling this option load balances GTP-U sessions to all of the FPCs. GTP-U load balancing uses Tunnel Endpoint Identifiers (TEIDs) to identify and load balance sessions.