Carrier web-based manager settings

Leave a reply

Specifying logging types

 

You can configure the unit to log GTP packets based on their status with GTP traffic logging. The status of a GTP packet can be any of the following 5 states:

  • Forwarded – a packet that the unit transmits because the GTP policy allows it
  • Prohibited – a packet that the unit drops because the GTP policy denies it
  • Rate-limited – a packet that the unit drops because it exceeds the maximum rate limit of the destination GSN
  • State-invalid – a packet that the unit drops because it failed stateful inspection
  • Tunnellimited – a packet that the unit drops because the maximum limit of GTP tunnels for the destination GSN is reached.

The following information is contained in each log entry:

  • Timestamp
  • Source IP address
  • Destination IP address
  • Tunnel Identifier (TID) or Tunnel Endpoint Identifier (TEID)
  • Message type
  • Packet status: forwarded, prohibited, state-invalid, rate-limited, or tunnel-limited
  • Virtual domain ID or name
  • Reason to be denied if applicable.

 

Pages: 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30
This entry was posted in FortiOS 5.4 Handbook on by .

About Mike

Michael Pruett, CISSP has a wide range of cyber-security and network engineering expertise. The plethora of vendors that resell hardware but have zero engineering knowledge resulting in the wrong hardware or configuration being deployed is a major pet peeve of Michael's. This site was started in an effort to spread information while providing the option of quality consulting services at a much lower price than Fortinet Professional Services. Owns PacketLlama.Com (Fortinet Hardware Sales) and Office Of The CISO, LLC (Cybersecurity consulting firm).

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.