I have a small remote office that is only connected back to HQ with a Site to Site VPN connection, both sites running ASA's. The connectivity works fine and there really aren't any problems. My issue is when I'm on the remote ASA and I try to upload the config (or download an update) from my machine using the local address (in HQ) it does not connect. I see the ASA on the remote site attempting to make a connection to my local IP through it's public interface so it's not even trying to use the VPN tunnel. I can ping my machine from the remote ASA if I source the ping from the internal interface.
How can I make the tftp transfer work in this situation?