Please see attached config. I have been configuring a L2L IPSec tunnel between an ASA5510 and an ISR2911. From the ASA side I can access any hosts in the 192.168.240.0/22 subnet without issue, which is desired. The problem is I cannot access the inside interface of the ISR 192.168.240.1 for management purposes. The access-list 23 has the appropriate entries to allow access, but it does not work. I cannot ping the inside interface on the ISR either over the L2L tunnel. How do I configure to allow access to the inside interface over the L2L tunnel to manage the ISR? Information is most appreciated.
Note that via the EasyVPN remote access tunnel using CiscoVPN client, I can access the ISR inside interface no problem and perform management functions.