Quick question. Using a 5505 running 8.0(4) code, is is possible to allow a user to connect via IPSec as well as SVC?? In this particular instance clients are authenticated using LOCAL authentication. When I configure the user attributes I can either set the vpn-group-policy or use memberof and fill in a comma separated list of tunnels. If I have both the vpn-group-policy and the memberof defined (or just the vpn-group-policy) I can only connect via the SVC. If I only have the memberof defined I can only connect with the IPSec VPN Client. Is there no way to provide both services for users??
Table of ContentsIntroductionVersion HistoryPossible Future
UpdatesDocuments PurposeNAT Operation in ASA 8.3+ SectionsRule Types
Network Object NATTwice NAT / Manual NATRule Types used per SectionNAT
Types used with Twice NAT / Manual NAT and Network Obje...
[toc:faq]Introduction:This document describes details on how NAT-T
works.Background:ESP encrypts all critical information, encapsulating
the entire inner TCP/UDP datagram within an ESP header. ESP is an IP
protocol in the same sense that TCP and UDP are I...