In my application the easy vpn clients (software and hardware) are connecting to ASA5540 (ver. 8.0.3) on outside interface and access corporate server resources on the inside interface. To authorize the access the ACS (ver. 4.2) downloadable ACL are used.
On the inside interface there is a management subnet. The PCs and management servers on management subnet require access to remote clients. The access from management subnet to remote clients is working only when the full ip access from clients to management subnet is opened in downloadable ACL. It look like that the ASA5540 is not functioning as firewall.
I would like to have restricted access from remote clients to management servers and the full access from management subnet to remote clients.
Could anybody help me.