I have a asa5510 that we created a seperate DMZ for vendorss to have internet access when they are in the building.
We have http, https, dns and isakmp allowed outbound on this DMZ.
We have used it before with no problem, but one vendor came in and needed access to his VON connection.
They aces for port 10000 allowed outbound.
This was allowed, the cisco client established a connection and requested is user name and password.
When this was entered, the padlock closed and looked like an established connection.
After about a minute, the client closes the connection saying the remote host is no longer responding.
If the tunnel is created via the client, do I need any additional lines allowed for specific networks he needs to get to, or should everything be allowed via the established VPN connection?