If I connect a client with IP address 192.168.1.2 to the interface eth0/1 and do a ping to the cme, I don't see any packets getting encrypted. I don't have any idea about VPN, I just need it for a wireless lab environment. What do I have to configure on the ASA, so the inside traffic is encrypted?
Thanks for your answer, but I found the "problem", I did not check the right counters, it worked from the beginning, but I only verified the 172.16.100.0/32 subnet, here is the output for the 192.168.1.0/24 subnet:
ezvpn-asa# show crypto ipsec sa
Crypto map tag: _vpnc_cm, seq num: 10, local addr: 172.16.100.2
access-list _vpnc_acl permit ip 192.168.1.0 255.255.255.0 any
local ident (addr/mask/prot/port): (192.168.1.0/255.255.255.0/0/0)
Table of ContentsIntroductionVersion HistoryPossible Future
UpdatesDocuments PurposeNAT Operation in ASA 8.3+ SectionsRule Types
Network Object NATTwice NAT / Manual NATRule Types used per SectionNAT
Types used with Twice NAT / Manual NAT and Network Obje...
[toc:faq]Introduction:This document describes details on how NAT-T
works.Background:ESP encrypts all critical information, encapsulating
the entire inner TCP/UDP datagram within an ESP header. ESP is an IP
protocol in the same sense that TCP and UDP are I...