I'm trying to create a mesh network using dmvpn, and everything works great until I put an ASA5520 in front of the hub router (2801). The ASA initially blocked all communication to the spokes, but after browsing the forms I found the following commands:
static (inside,outside) udp pub_add 500 192.168.0.2 500 netmask 255.255.255.255
static (inside,outside) udp pub_add 4500 192.168.0.2 4500 netmask 255.255.255.255
static (inside,outside) tcp pub_add 50 192.168.0.2 50 netmask 255.255.255.255
global (outside) 1 pub_add
nat (inside) 1 192.168.0.2 255.255.255.255
crypto isakmp nat-t
With those commands in place the spokes show a dmvpn connection (sh dmvpn) but cannot ping the hub network. The spokes are also able to create a connection (ping) to each other.
If anyone has any suggestions I'd really appreciate the help.