I checked and it works. Blocked udp port 12366 on path, and it hopped to next available 12386
NAT TYPE: E -- indicates End-point independent mapping
A -- indicates Address-port dependent mapping
N -- indicates Not learned
Note: Requires minimum two vbonds to learn the NAT type
PUBLIC PUBLIC PRIVATE PRIVATE PRIVATE MAX RESTRICT/ LAST SPI TIME NAT VM
INTERFACE IPv4 PORT IPv4 IPv6 PORT VS/VM COLOR STATE CNTRL CONTROL/ LR/LB CONNECTION REMAINING TYPE CON REG
STUN PRF IDs
-------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
GigabitEthernet1 172.20.1.111 12366 172.20.2.1 :: 12366 0/0 biz-internet up 2 no/yes/no No/No 0:00:00:15 0:11:54:00 N 5 Default
GigabitEthernet3 172.20.3.1 12426 172.20.3.1 :: 12426 0/0 public-internet up 2 no/yes/no No/No 0:00:00:01 0:11:53:59 N 5 Default
Site1-RTR1#sh sdwan control local | begin NAT
NAT TYPE: E -- indicates End-point independent mapping
A -- indicates Address-port dependent mapping
N -- indicates Not learned
Note: Requires minimum two vbonds to learn the NAT type
PUBLIC PUBLIC PRIVATE PRIVATE PRIVATE MAX RESTRICT/ LAST SPI TIME NAT VM
INTERFACE IPv4 PORT IPv4 IPv6 PORT VS/VM COLOR STATE CNTRL CONTROL/ LR/LB CONNECTION REMAINING TYPE CON REG
STUN PRF IDs
-------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
GigabitEthernet1 172.20.1.111 12386 172.20.2.1 :: 12386 2/1 biz-internet up 2 no/yes/no No/No 0:00:01:21 0:11:58:23 N 5 Default
GigabitEthernet3 172.20.3.1 12426 172.20.3.1 :: 12426 0/0 public-internet up 2 no/yes/no No/No 0:00:00:02 0:11:51:01 N 5 Default
WAN_ROUTER#sh ip access
Extended IP access list test
10 deny udp any eq 12366 any (24 matches)
20 permit udp any eq 12346 any
30 permit udp any eq 12406 any
40 permit udp any eq 12386 any (20 matches)
60 permit ip any any (1574 matches)
HTH,
Please rate and mark as an accepted solution if you have found any of the information provided useful.
