Hello, I have devices in LAN (APs) that creates two connections to the
same Public IP (CAPWAP Control Channel: UDP/5246 + CAPWAP Data Channel
UDP/5247) Both connections have the same port as Source Port: 5270, this
is the behavior I get with FortiOS ...
All APs always use the same Source Port (UDP/5270) for both CAPWAP
CTRL+DATA flows and I can't change it. The solution of assigning small
pools of src-ports for each individual IP LAN Client seems fine, Could
you give me some links that explain how t...
@pminarik wrote:Consider applying an IP pool with port-ranges ("fixed
port range" or "port block allocation") assigned to a firewall policy
just for this specific traffic. The port-ranges will ensure that the
SNAT source-ports are shifted into differ...
Yes, fixed port is disabled: https://i.imgur.com/NkGjasH.pngI have is
not having one session to the target (I have cases where +150 access
points that need to be natted behind the same Public IP = 300 CAPWAP
sessions vs same Public IP with same Local...
The Server constraints are:Does not support CAPWAP packets from
different APs arriving at WLC with same source IP:port.Does not support
CAPWAP packets from same AP arriving at WLC with different source
IP.Does support CAPWAP packets from same AP arri...
