I have an ASA 5520 cofigured for IPSEC
and i inted to tunnel all internet traffic through the tunnel to get ( no split tunneling)
The ASA is sitting behhind and external firewall and i had to do NAT transaltions for the outside interface .
My problem is this: Remote access VPN connection is fine and i can access all the resources on my remote network as well as all internal websites.
but i cannot access other internet traffic.
i had to enable same-security traffic on the outside interface because the firewall oth the ASA sees the traffic as a loop and drops it.
but on the other hand my external firewall sees the traffic as an ip spoof and drops it as well,because it sees the internet traffic request coming form it's internal interfaces.