I have an ASA 5510 running 8.2(2)17 code which is terminating remote access vpns. the vpn users connect using cisco vpn client (version 5.0.06.0160)
The ASA is also using a websense device for url filtering.
Local users can access the internet, and are having their traffic filtered correctly by Websense, but VPN users cannot access the internet (the vpn negotiates correctly, and they can access internal networks).
From running packet captures, it looks like traffic from the vpn clients is leaving the asa, but I'm not seeing corresponding return traffic.
There are two things that strike me as odd/bad:
1 - when I connect to the vpn, the default gateway that i am assigned is the first address in the vpn dhcp pool (ie the vpn pool is 184.108.40.206 to 220.127.116.11/24 ... I am assigned the address 18.104.22.168, and my default gateway is 22.214.171.124). I have not configured this default gateway anywhere on the ASA.
2 - my pc's routing table shows two default gateways. the first goes via my wireless network, and has a metric of 25
the second is via the vpn gateway mentioned above (126.96.36.199) and has a metric of 26, which should be less preferable) I would have thought that the vpn gateway should be the preferred route. the routing table also shows no routes to internal networks (even though they are accessible over the vpn)
Any help or suggestions would be greatly appreciated.