FortiOS Carrier GTP load balancing
If you are operating a FortiGate-7000 system that is licensed for FortiOS Carrier (also called FortiCarrier), you can use the information in this section to optimize GTP performance. The commands and settings in this chapter only apply if your FortiGate-7000 has a FortiOS Carrier license.
Optimizing NPU GTP performance
You can use the following command to optimize GTP performance:
config system npu
set gtp-enhance-mode enable
gtp-enhance-mode usually improves GTP performance.
GTP-C load balancing
By default and for the best GTP-C tunnel setup and throughput performance, FortiGate-7000 systems licensed for FortiOS Carrier load balance GTP-C traffic to all FPMs. Normally you should use this default configuration for optimum GTP-C performance.
If you want GTP-C traffic to only be processed by the primary (or master) FPM, you can edit the following flow rule and set
enable. When enabled, this flow rule sends all GTP-C traffic to the primary FPM. Enabling this flow rule can reduce GTP performance, since all GTP-C tunnel setup sessions will be done by the primary FPM and not distributed among all of the FPMs.
config load-balance flow-rule
set status enable
set vlan 0
set ether-type ipv4
set src-addr-ipv4 0.0.0.0 0.0.0.0
set dst-addr-ipv4 0.0.0.0 0.0.0.0
set protocol udp
set src-l4port 0-0
set dst-l4port 2123-2123
set action forward
set forward-slot master
set priority 5
set comment "gtp-c to master blade"
GTP-U load balancing
To load balance GTP-U traffic, in addition to enabling
gtp-enhance-mode, you should enable the following option:
config load-balance setting
set gtp-load-balance enable
Enabling this option load balances GTP-U sessions to all of the FPMs. GTP-U load balancing uses Tunnel Endpoint Identifiers (TEIDs) to identify and load balance sessions.