Hello All. We are having an issue getting TFTP to work over an LAN-2-LAN IPsec tunnel using NAT (on both sides of the tunnel). We have run capture on both the ASAs and the TFTP client and Server. What appears to be happening is that the random UDP ports associated with TFTP are not reaching the detination. Both the crypto map and firewall ACLs are allowing all IP and TFTP Inspect is configured on both ASAs. Any help would be greatly appreciated!
I have this problem too.