Fortinet Document Library

Version:

Version:

Version:

Version:


Table of Contents

FortiGate-7000 Handbook

Download PDF
Copy Link

FortiOS Carrier GTP load balancing

If you are operating a FortiGate-7000 system that is licensed for FortiOS Carrier (also called FortiCarrier), you can use the information in this section to optimize GTP performance. The commands and settings in this chapter only apply if your FortiGate-7000 has a FortiOS Carrier license.

Optimizing NPU GTP performance

You can use the following command to optimize GTP performance:

config system npu

set gtp-enhance-mode enable

end

Enabling gtp-enhance-mode usually improves GTP performance.

GTP-C load balancing

By default and for the best GTP-C tunnel setup and throughput performance, FortiGate-7000 systems licensed for FortiOS Carrier load balance GTP-C traffic to all FPMs. Normally you should use this default configuration for optimum GTP-C performance.

If you want GTP-C traffic to only be processed by the primary (or master) FPM, you can edit the following flow rule and set status to enable. When enabled, this flow rule sends all GTP-C traffic to the primary FPM. Enabling this flow rule can reduce GTP performance, since all GTP-C tunnel setup sessions will be done by the primary FPM and not distributed among all of the FPMs.

config load-balance flow-rule

edit 17

set status enable

set vlan 0

set ether-type ipv4

set src-addr-ipv4 0.0.0.0 0.0.0.0

set dst-addr-ipv4 0.0.0.0 0.0.0.0

set protocol udp

set src-l4port 0-0

set dst-l4port 2123-2123

set action forward

set forward-slot master

set priority 5

set comment "gtp-c to master blade"

end

GTP-U load balancing

To load balance GTP-U traffic, in addition to enabling gtp-enhance-mode, you should enable the following option:

config load-balance setting

set gtp-load-balance enable

end

Enabling this option load balances GTP-U sessions to all of the FPMs. GTP-U load balancing uses Tunnel Endpoint Identifiers (TEIDs) to identify and load balance sessions.

FortiOS Carrier GTP load balancing

If you are operating a FortiGate-7000 system that is licensed for FortiOS Carrier (also called FortiCarrier), you can use the information in this section to optimize GTP performance. The commands and settings in this chapter only apply if your FortiGate-7000 has a FortiOS Carrier license.

Optimizing NPU GTP performance

You can use the following command to optimize GTP performance:

config system npu

set gtp-enhance-mode enable

end

Enabling gtp-enhance-mode usually improves GTP performance.

GTP-C load balancing

By default and for the best GTP-C tunnel setup and throughput performance, FortiGate-7000 systems licensed for FortiOS Carrier load balance GTP-C traffic to all FPMs. Normally you should use this default configuration for optimum GTP-C performance.

If you want GTP-C traffic to only be processed by the primary (or master) FPM, you can edit the following flow rule and set status to enable. When enabled, this flow rule sends all GTP-C traffic to the primary FPM. Enabling this flow rule can reduce GTP performance, since all GTP-C tunnel setup sessions will be done by the primary FPM and not distributed among all of the FPMs.

config load-balance flow-rule

edit 17

set status enable

set vlan 0

set ether-type ipv4

set src-addr-ipv4 0.0.0.0 0.0.0.0

set dst-addr-ipv4 0.0.0.0 0.0.0.0

set protocol udp

set src-l4port 0-0

set dst-l4port 2123-2123

set action forward

set forward-slot master

set priority 5

set comment "gtp-c to master blade"

end

GTP-U load balancing

To load balance GTP-U traffic, in addition to enabling gtp-enhance-mode, you should enable the following option:

config load-balance setting

set gtp-load-balance enable

end

Enabling this option load balances GTP-U sessions to all of the FPMs. GTP-U load balancing uses Tunnel Endpoint Identifiers (TEIDs) to identify and load balance sessions.