I have pix525 with ASA8 with ADSM6 behind layer 2(transparent mode) firewall.
I've configured Remote access VPN on this thing and I can connect from home(with NAT-T disabled)
all the ip address are public ip except the client from home which go through a NAT.
Once connected, I can't ping/reach any other subnet except the one that's assigned to cipsec0 interface.
I've try to add allow all on firewall rule on PIX itself, disabled NAT, many other settings, but can't seem to make it go beyond the "inside" net of the PIX.
here is simple diagram.
now 18.104.22.168/24 network is not for VPN only, it's an existing subnet that has it's own default gateway.
inface the PIX is not the default gateway in any subnet.