Skip to main content
Julien87
Julien87
Contributor II
February 10, 2022
Solved

UDP HOLE FOR SPOKES ?

  • February 10, 2022
  • 1 reply
  • 3254 views

Hi ,

 

I have read the new feature in 6.4 release note, for advpn and shortcup behind NAT.  UDP Hole Punching.

 

But i have not look if this parameters is by defaut in 6.4 or if it' a parameter in fortigate?

 

I don't have found this information in forum or cookbook.  Anyone have  some information for that?

 

I try to use with advpn and OSPF routing.

 

https://community.fortinet.com/t5/FortiGate/Technical-Tip-UDP-hole-punching-for-spokes-behind-NAT/ta-p/192762

 

 

Thanks,

 

 

Best answer by akristof

Hello,

Thank you for your question. It is functionality built-in in ike. So with ADVPN, if both spokes are behind NAT, NAT holes will be opened to allow shortcut creation. You cannot disable it.

1 reply

akristof
Staff
akristofAnswer
Staff
February 14, 2022

Hello,

Thank you for your question. It is functionality built-in in ike. So with ADVPN, if both spokes are behind NAT, NAT holes will be opened to allow shortcut creation. You cannot disable it.

    Julien87
    Julien87Author
    Contributor II
    February 14, 2022

    Hi Adrian,

     

    thanks for your reply. I'm off to check if the operator router is compatible with RFC 4787.  

    Have a nice day.

     

     

    Terms & ConditionsAccessibility statement