Fortinet black logo

FortiGate-7000F Handbook

Enabling NP7 GTP load balancing

Copy Link
Copy Doc ID fd130345-bc33-11ec-9fd1-fa163e15d75b:400073
Download PDF

Enabling NP7 GTP load balancing

You can use the following load balancing command to enable or disable NP7 GTP load balancing.

config load-balance setting

config gtp-load-balance {disable | enable}

end

The following flow rule is also available to direct GTP-C traffic to the primary FPM.

config load-balance flow-rule

edit 17

set ether-type ipv4

set protocol udp

set dst-l4port 2123-2123

set comment "gtp-c to master blade"

end

By default, both configurations are disabled, and GTP-C and GTP-U traffic is not load balanced. The NP7 processors send all GTP-C and GTP-U traffic to the primary FPM.

To load balance GTP-U traffic to multiple FPMs, you can set gtp-load-balance to enable. This also enables the GTP-C flow rule. GTP-U traffic is then load balanced across all FPMs while GTP-C traffic is still handled by the primary FPM. This is the recommended configuration for load balancing GTP traffic.

GTP-U load balancing may not distribute sessions evenly among the FPMs. Many 4G networks to have just a few SGWs. Similar configurations with a small number of GTP servers may also be used in other GTP implementations. If the FortiGate-7000F receives GTP traffic from a small number of GTP servers, the GTP traffic will have very few source and destination IP addresses. Since SLBC load balancing is based on source and destination IP addresses, sessions may not be distributed evenly among the FPMs. In fact, most GTP-U traffic could be processed by a limited number of FPMs.

Enabling GTP-U load balancing still distributes sessions and improves performance, but performance gains from enabling GTP-U load balancing may not be as high as anticipated.

Enabling NP7 GTP load balancing

You can use the following load balancing command to enable or disable NP7 GTP load balancing.

config load-balance setting

config gtp-load-balance {disable | enable}

end

The following flow rule is also available to direct GTP-C traffic to the primary FPM.

config load-balance flow-rule

edit 17

set ether-type ipv4

set protocol udp

set dst-l4port 2123-2123

set comment "gtp-c to master blade"

end

By default, both configurations are disabled, and GTP-C and GTP-U traffic is not load balanced. The NP7 processors send all GTP-C and GTP-U traffic to the primary FPM.

To load balance GTP-U traffic to multiple FPMs, you can set gtp-load-balance to enable. This also enables the GTP-C flow rule. GTP-U traffic is then load balanced across all FPMs while GTP-C traffic is still handled by the primary FPM. This is the recommended configuration for load balancing GTP traffic.

GTP-U load balancing may not distribute sessions evenly among the FPMs. Many 4G networks to have just a few SGWs. Similar configurations with a small number of GTP servers may also be used in other GTP implementations. If the FortiGate-7000F receives GTP traffic from a small number of GTP servers, the GTP traffic will have very few source and destination IP addresses. Since SLBC load balancing is based on source and destination IP addresses, sessions may not be distributed evenly among the FPMs. In fact, most GTP-U traffic could be processed by a limited number of FPMs.

Enabling GTP-U load balancing still distributes sessions and improves performance, but performance gains from enabling GTP-U load balancing may not be as high as anticipated.