I have a client connecting to a portion of my network using AnyConnect. This is working fine, client connects to my ASA5505 and access network resources.
What I need to be able to do (for long and boring reasons) is allow the client to "see" the broadcast traffic that is happening on the internal network. Is this possible or is the ASA and the VPN tunnel simply going to not allow this?
Unforunately that link is for an unresolved DHCP problem. I have seen that it might be possible to send DHCP requests over a VPN (although lordy knows why anyone would even want to do that) but not many working examples.
Besides, its not DHCP requests I'm trying to resolve. The broadcast traffic I would like my client to see is DIS traffic which is a straight broadcast UDP protocol.
To my understanding, sending broadcast/multicast traffic through IPSEC tunnel is not possible. It is possible to send it if you wrap it with GRE then send it over using the IPSEC tunnel. But this kind of VPN (GREoIPSEC) is not supported on the ASA, you'll need a router for this.
Table of ContentsIntroductionVersion HistoryPossible Future
UpdatesDocuments PurposeNAT Operation in ASA 8.3+ SectionsRule Types
Network Object NATTwice NAT / Manual NATRule Types used per SectionNAT
Types used with Twice NAT / Manual NAT and Network Obje...
Table of Contents Introduction:This document describes details on how
NAT-T works. Background: ESP encrypts all critical information,
encapsulating the entire inner TCP/UDP datagram within an ESP header.
ESP is an IP protocol in the same sense that TCP an...