I have a client to site VPN setup on my 5505 per instructions in Chapter35 of the ASA8.x configuration guide.
One thing I am not sure about is how do I control what VPN users can connect to? I dont see anything in the config that binds them to the inside interface so what is preventing them from connecting to the DMZ as well? How do limit their connectivity so they can only connect to one host on the inside? or one host on the inside and one on the DMZ?
I think is what you're looking for.
Hope it helps.