I have an ASA5500 connected to a L2 switch which is connected to a router which hosts all the gateways for clients.
I create a VPN on the ASA5500 as a backdoor into the network. The ASA5500 has 3 subinterfaces which are on the same network as each gateway.
Subinterfaces on ASA are vlan 100,200,300
vlan 100 192.168.10.10
vlan 200 192.168.20.10
vlan 300 192.168.30.10
From the ASA CLI I am able to ping all gateways and subinterfaces.
I create the ASA as a VPN Server. I create 3 different Ip Address Pools that match the vlans for each connecting vpn user.
I enable crypto isakmp nat-traversal.
I create each policy for split-tunneling allowing only access to the vlans.
When connected through VPN, I can access resources for only the vlan that I got an IP from but cannot ping or access anyother vlans. not even the gateway IP for that vlan.
What are some of the things I need to do to make this work?