I have configured a Cisco ASA-SSM IPS module in a Cisco ASA 5510, and am having issues whereby users on the inside can initiate a VPN session to an outside host, but cannot bring up an RDP session within the VPN session. When I remove the IPS inspection, it works fine. Has anyone come across anything similar before?
Yes I have... there is nothing in the Event Log that is being blocked, I only get some UDP Flood adn TCP Flood messages, but they're not blocks from what I can gather, and even when I disable these signatures, I still have the same issue.
Table of ContentsIntroductionVersion HistoryPossible Future
UpdatesDocuments PurposeNAT Operation in ASA 8.3+ SectionsRule Types
Network Object NATTwice NAT / Manual NATRule Types used per SectionNAT
Types used with Twice NAT / Manual NAT and Network Obje...
Table of Contents Introduction:This document describes details on how
NAT-T works. Background: ESP encrypts all critical information,
encapsulating the entire inner TCP/UDP datagram within an ESP header.
ESP is an IP protocol in the same sense that TCP an...