We recently installed a brand new and fully updated SA520W module at a customer site.
Internet works, wireless too...
Very simple configuration, no site-to-site vpn, no NAT, ...
But people from INSIDE the LAN cannot connect to a remote site by VPN. By this, I mean that people inside the LAN can go on Internet, access ftp sites, ... without any problem. But some consultants in the LAN have to connect by VPN to remote places. They use a Cisco client and Ipsec 5.0.xxx Everyone is affected. If we replace the SA520W by another router they are all able to work and connect.
Should I allow soemthing in the firewall ?
Thanks