We have multiple VPN profiles configured for multiple remote VPN users, dependent on what their job function is determines which profile they get.
One in question is giving me fits.
Remote usere connects to co-lo and attempts to reach host at main office. We have a site-to-site tunnel from the co-lo to the main office. Regular employee's this works fine and I can't for the life of me figure out why the xuser group is any different. it seems as though traffic destined for the main office from the xuser group never gets pushed through the tunnel.
If I do a packet trace from xuser > host it gets rejected:
We have configured the outside and inside Interface with official ipv6 adresses, set a default route on outside Interface to our router, we also have definied a rule , which also gets hits, to permit tcp from inside Interface to any6.
In Syslog I also se...