Hi, I am debugging intermittent hairpin VPN traffic between EZVPN clients, ASA 5520 is ezvpn server. I am trying to determine where the packet is dropped.
From one client continuous ping to the other client is issued, the ping packets should go to ASA's outside interface, decrypted and encrypted and again be sent out the same outside interface. When I do capture for the ping packets on ASA's outside interface, nothing is captured even when ping is successful.
ping capture from ezvpn client to ASA inside network is fine.
How should I do packet capture in this VPN hairpin scenario? Thanks a lot for your help.