I have an ASA 5505 running the asa804-k8 version, AnyConnect VPN 2.3.0185 and CSD v 3.4. The remote computer can connect just fine with no prelogin restrictions in place, but when I apply a public host IP as a prelogin check, the client connection is denied. The client is behind a firewall that is using PAT. I've verified that the public IP shown by the ASA VPN monitor (when no prelogin requirement is in place)is the same as the one configured in the prelogin. Any ideas on why this won't recognize the IP? Is PAT behind this somehow?
Thanks in advance.