I Can connect to my pix 515 over ipsec l2tp using win2k and get an internal ip address.The client is connecting to an ISP and then building a vpn to the pix .The pix has a single global IP say (126.96.36.199) and an internal ip say 10.100.100.4 and has a default route to the internet on the outside to a router say 188.8.131.52 .The office internal network connects to the internet using a router whose internal interface is say 10.100.100.251 and external is 184.108.40.206 and eventually routes packets to 220.127.116.11 and to the internet .
I have the follwing statements in the pix config .
sysopt connection permit-ipsec
sysopt connection permit-l2tp
nat (inside) 0 access-list 90
nat (inside) 1 0.0.0.0 0.0.0.0 0 0
route outside 0.0.0.0 0.0.0.0 18.104.22.168 1
access-list 90 permit ip 10.0.0.0 255.255.255.0 10.100.100.1.0 255.255.255.0
The only problem is I cant access anything from the vpn client . Any help appreciated .The type of access I am looking at is as if the client was on the inside .
Table of ContentsIntroductionVersion HistoryPossible Future
UpdatesDocuments PurposeNAT Operation in ASA 8.3+ SectionsRule Types
Network Object NATTwice NAT / Manual NATRule Types used per SectionNAT
Types used with Twice NAT / Manual NAT and Network Obje...
Table of Contents Introduction:This document describes details on how
NAT-T works. Background: ESP encrypts all critical information,
encapsulating the entire inner TCP/UDP datagram within an ESP header.
ESP is an IP protocol in the same sense that TCP an...