Advanced filtering options

The FortiOS Carrier firewall supports advanced filtering against the attributes RAT, RAI, ULI, APN restriction, and

IMEI-SV in GTP to block specific harmful GPRS traffic and GPRS roaming traffic. The following table shows some of the GTP context requests and responses that the firewall supports.

Attributes supported by FortiCarrier firewalls

GTP Create PDP Context Request

GTP Create PDP Con- text Response

GTP Update PDP Con- text Request

GTP Update PDP Context Response

APN                           yes                                yes                                      –

APN Restriction

yes                                  –                                         –                                  yes

IMEI–SV                     yes                                  –                                         –                                     –

IMSI                           yes                                  –                                      yes                                  –

GTP Create PDP Context Request

GTP Create PDP Con- text Response

GTP Update PDP Con- text Request

GTP Update PDP Context Response

When editing a GTP profile, select Advanced Filtering > Add to create and add a rule. When the rule matches traffic it will either allow or deny that traffic as selected in the rule.