Help
FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
acvaldez
Staff
Staff

Created on ‎10-06-2025 12:50 AM

Article Id 413847

Technical Tip: Understanding SCTP Multihoming Configuration Behavior in FortiGate

Description This article will demonstrate the configuration behavior of SCTP multihoming in FortiGate.
Scope FortiGate.
Solution

Diagram:


SCTP DIAGRAM.png

 

Configuration:

The dummy IP is configured in case of overlapping networks between the SCTP server and the SCTP client side.

 

SCTP DUMMY IP VIP.png

The SCTP client’s initial connection request (INIT) from the client to the server will then be translated to this IP address.

 

SCTP PUBLIC IP .png

 

This ensures that the SNATed IP is preserved in the SCTP IP parameter.

 

SCTP TRANSLATION.png

Packet Capture:

SCTP Client init chunk ingress to the FortiGate.

 

sctp ingress.png

 

SCTP Client init chunk engress to the FortiGate.

 

sctp egress.png

 

58
0 Kudos
Suggest New Article
Article Feedback
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2025 Fortinet, Inc. All Rights Reserved.