I am having trouble inspecting network traffic on an ASA that is being
<br />used as a VPN Concentrator. Based on some documentation I have
<br />recently come upon it eludes that this may not even be possible based
<br />on the fact the logical inspection point in the ASA is sandwiched
<br />between the firewall policy and VPN policy.
<br />
<br />I guess my question is whether the ASA with AIP SSM is even capable of
<br />doing what I would like to do and if it is could you point towards any
<br />specific documentation that covers this configuration.
<br />
<br />Thanks in advance for the responses.