Hi.
I have OpenVPN set up to a remote site.
On the outward path traffic is directed through the VPN and straight in to the remote sites subent, however on the return path the traffic first hits the firewall before being re-routed back in to the subnet to the firewall (this was to avoid route statements on servers).
The problem with this is that the ASA denys TCP traffic on the return path as it did not see the original connection??
Deny TCP (no connection) Flags SYN ACK interface Inside
How do I either turn off this type of stateful inspection (not a great idea I know) or work around this?