Hi all. I have configured vpn for users to remote access to 2 offices. I realised that when i could not vpn into officeB from officeA and vise versa.However i could vpn into officeA and officeB from home. I then added crypto isakmp nat-traversal 20 to both my cisco5510 firewall in both offices. After that i could vpn from officeA to officeB and vise versa. I understand that by allowing nat-t it solves the conflict that nat has with ipsec. But i do not understand why it would work from my home without adding nat-t since my pc would be behind my home router and would be translated to a public ip.
I have this problem too.