I have a 5510 that is used for Client VPN access and there is something simple I just can't get to work.
The VPN part works fine with AAA done on an ACS.
But what doesn't work is Access to networks that are not directly connected to the Inside interface.
ie VPN users can connect to the Inside Interface network (say 192.168.0.0/24) but not to a 10.0.0.0/8 network that is connected thru 192.168.0.1 router.
I have the static routes all in the Firewall and all routing pointing the way back to the Firewall from all other networks but I get no further than the 192.168.0.1 router......
I use split-tunneling and forward all Private networks over the VPN - internet is used thru the clients own local access.
Can someone help me out here ?
PS: have the same type of access on a 7206VXR and that is just Sweet , everything can be accessed that is needed - but I would like to move this service over to the ASA.
I dont understand ASDM parts like you submit. Some of the code would be great.
I would also recommend checking ACLs applied to inside interface (If any) that it permits the traffic like
access-list inside_access_in permit 10.0.0.0 255.0.0.0 vpnsubnet vpnnetmask
If still no joy, attaching your sanitized config would be helpful for me to diagnose.