I'd like to configure client-to-site ipsec vpn using asa as attachment. I've tested but it seemed that it didn't work. I'm not sure if it's possible or not. Could anyone advise me please?
Thanks in advance,
Here's what you can do. On the ASA add a static host route for Server, but have it point to the inside interface of Firewall.
<font size="2">route inside 10.0.2.100 255.255.255.255 10.0.1.254</font>
The Firewall knows to go out the e2 interface because it's directly connected.
On the Server you will need to a static route for the VPN Pool pointing to Firewall.
<font size="2">route add 10.0.3.0 mask 255.255.255.0 10.0.2.254</font>
On the Firewall you will also need to add a route for the VPN Pool.
<font size="2">route inside 10.0.3.0 255.255.255.0 10.0.1.200</font>