We have several remote sites, connecting to headcuarters over IPSEC vpn to a Concentrator 3560.
The concentrator have a public ip, and the internal interface is on a DMZ firewall.
We need to tunneling all remote sites traffic including internet traffic, to reach internet over the headcuarter firewall.
I try to configure on remote sites routers and access-list "any" to create the tunnel, but the VPN fails on concentrator ....
I attach a schema
Thanks in advance.