Really appreciate for any thought about this problem?
After vpn in, a remote PC is assigned ip address 10.1.8.13 255.255.254.0 from the ASA. I did ipconfig on the pc and it shows default gateway is 10.1.8.1 The remote pc can access all internal subnets and able to ping the internal interface of the firewall 10.1.2.10 and both ip addresses of the vlan interface of the 6509 where the inside interface of the ASA plug to. that vlan interface has ip addresses 10.1.2.3 and 10.1.8.1 which is a secondary address
The problem is all internal devices including the ASA can NOT ping 10.1.8.13. The servers push some updates to the remote PC, but that does not work.
I turn off the firewall on the PC.