We recently converted our LAN-to-LAN VPN's from Cisco 3005 VPN concentrators to ASA 5510's. Everything is working correctly, except for one thing.
On the remote end of the tunnel, we have a Xyplex Terminal Server. When the tunnels were on the 3005's, we were able to telnet into the Xyplex using the default of port 2000, however with the tunnel on the ASA, we are unable to do the telnet.
All of our testing indicates that the issue is specific to the fact that the telnet is on port 2000.
It appears to be policy map related, but removing skinny in the policy map did not resolve the issue.