Chapter 25
Configuring Application Layer Protocol Inspection
•
In conjunction with NAT, the FTP application inspection translates the IP address within the application
payload. This is described in detail in RFC 959.
GTP Inspection
This section describes the GTP inspection engine. This section includes the following topics:
•
•
•
GTP inspection requires a special license. If you enter GTP-related commands on a security appliance
Note
without the required license, the security appliance displays an error message.
GTP Inspection Overview
GPRS provides uninterrupted connectivity for mobile subscribers between GSM networks and corporate
networks or the Internet. The GGSN is the interface between the GPRS wireless data network and other
networks. The SGSN performs mobility, data session management, and data compression (See
Figure
Figure 25-3
The UMTS is the commercial convergence of fixed-line telephony, mobile, Internet and computer
technology. UTRAN is the networking protocol used for implementing wireless networks in this system.
GTP allows multi-protocol packets to be tunneled through a UMTS/GPRS backbone between a GGSN,
an SGSN and the UTRAN.
OL-10088-01
Audit record 201005 is generated if the secondary dynamic channel preparation failed due to
memory shortage.
GTP Inspection Overview, page 25-31
Configuring a GTP Inspection Policy Map for Additional Inspection Control, page 25-32
Verifying and Monitoring GTP Inspection, page 25-36
25-3).
GPRS Tunneling Protocol
Home PLMN
MS
SGSN
Roaming partner
(visited PLMN)
Internet
Gn
Corporate
GGSN Gi
network 2
Gp
Corporate
network 1
GRX
Cisco Security Appliance Command Line Configuration Guide
GTP Inspection
25-31