I have a ASA 5505 up and running, all the static NAT statements I need to forward ports to internal services such as smtp, remote desktop and it works fine, however I set up a IPSEC vpn connection that authenticates to our domain controller and that part works. However, after I get connected and can't ping anything on the local network or access any of the services. I'm sure it's a NAT statement that I don't have correct. Here's the config. I really need to get this up and going tomorrow. Thanks for any help.
Just remove nat(outside) line and outside_nat0_outbound ACL.
And mention these statments:
1 sysopt connection permit-ipsec.. (If it is disabled,u can check with sh run sysopt).
2, crypto isakmp nat traversal 10 or 20
3 In no nat ACL, mention your local subnets as source and vpn client pool as destination.
4, create other ACL(ST) with different name and same source and destination like no nat ACL.
5, Then type nat (inside) 0 access-list nonat
6, In group-policy dwgavpn, mention splittunnel tunnelspecified and mention the split tunnel ACL (ST).