Symptom
5520 WLC running 8.5.124.43
2800 AP
Whenever 'Enable NAT Address' feature is enabled and configured the APs 2800 attempt only to make a DTLS connection with the NAT IP ADD and it never tries with the management IP ADD
However, if you use 8.5.120.0 version the AP tries the NAT IP ADD and when the DTLS connection fails it tries the management IP ADD and it works just great joining the WLC as expected
This happens even with 'AP Discovery - NAT IP Only' feature Disabled
Conditions
'Enable NAT Address' feature enabled and configured
Only management IP ADD used as Dynamic AP Management
Workaround
Disable the feature 'Enable NAT Address'
However APs behind NAT will not join, you need then a tunnel from the AP back to management IP ADD
Further Problem Description
