I configured my 5520 ASA as the server, configured the 5505 as the client. My internal network behind the 5520 can ping the remote device 5505 and the PC behind the 5505 can ping the 5520 but I can't pass traffic from PC to PC. The rules are there, routes are there, I believe the NAT statement is correct. I'm not sure what's going on. This is the 1st time I setup Easy VPN, i usually do L2L but I want to be able to hand this devices out without knowing the far end peer IP.
Any ideas? I have it in a lap right now, 5520 connects to a L3 switch and the ASA's are connected to each other. The VPN comes up right away but I do anything other than that!
I've set this up as remote access using easy vpn and also as a lan2lan and I get the same result. It could be the switch in between. I setup lan2lan tunnels all the time so something isn't right here. I'm talking to Cisco about it now.
Table of ContentsIntroductionVersion HistoryPossible Future
UpdatesDocuments PurposeNAT Operation in ASA 8.3+ SectionsRule Types
Network Object NATTwice NAT / Manual NATRule Types used per SectionNAT
Types used with Twice NAT / Manual NAT and Network Obje...
Table of Contents Introduction:This document describes details on how
NAT-T works. Background: ESP encrypts all critical information,
encapsulating the entire inner TCP/UDP datagram within an ESP header.
ESP is an IP protocol in the same sense that TCP an...