Carrier web-based manager settings

Information Element (IE) removal policy options

 

In some roaming scenarios, the unit is installed on the border of the PLMN and the GRX. In this configuration, the unit supports information element (IE) removal policies to remove any combination of R6 IEs (RAT, RAI, ULI, IMEI-SV and APN restrictions) from the types of messages described in “Advanced filtering options”, prior to forwarding the messages to the HGGSN (proxy mode).

 

IE removal policy

Enable                                        Select to enable this option.

SGSN address of message IE

The firewall address or address group that contains the SGSN addresses.

IEs to be removed                     The IE types that will be removed. These include APN Restriction, RAT, RAI, ULI, and IMEI.

Add                                             Adds an IE removal policy. When you select Add, the New window appears, which allows you to configure the IE policy.

Edit

Modifies settings from within the IE removal policy. When you select Edit, the Edit window appears, which allows you to modify the settings within the policy.

Delete                                         Removes the IE removal policy from the list.

New IE policy page

SGSN address                           Select a firewall address or address group that contains SGSN addresses.

IEs to be removed                     Select one or more IE types to be removed. These include APN Restriction, RAT, RAI, ULI, and IMEI.

This entry was posted in FortiOS 5.4 Handbook on by .

About Mike

Michael Pruett, CISSP has a wide range of cyber-security and network engineering expertise. The plethora of vendors that resell hardware but have zero engineering knowledge resulting in the wrong hardware or configuration being deployed is a major pet peeve of Michael's. This site was started in an effort to spread information while providing the option of quality consulting services at a much lower price than Fortinet Professional Services. Owns PacketLlama.Com (Fortinet Hardware Sales) and Office Of The CISO, LLC (Cybersecurity consulting firm).

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.