RemoteAccess VPN using anyconnect to ASA: asp-drop remote user traffic
Hello Dear Collegues,
I would be very thankfull to anybody who can help me and direct me to the solution of weird issue I've got with ASA 5520 ver 8.2(5).
There is a WEBVPN enabled, and I use anyconnect for remote-access VPN connection.
The connection is ok, split-tunneling is also ok, but no traffic from remote client can reach internal hosts. When I use capture type asp-drop I can see, that all trafic from remote client get dropped by ACL configured rule (Drop-reason: (acl-drop) Flow is denied by configured rule). But I have double checked all the ACL applied to all interface, as well as split-tunnel ACL, and I can't find the way to resolve the issue.
What could be the troubleshooting approach in this case ?
Table of ContentsIntroductionVersion HistoryPossible Future
UpdatesDocuments PurposeNAT Operation in ASA 8.3+ SectionsRule Types
Network Object NATTwice NAT / Manual NATRule Types used per SectionNAT
Types used with Twice NAT / Manual NAT and Network Obje...
Table of Contents Introduction:This document describes details on how
NAT-T works. Background: ESP encrypts all critical information,
encapsulating the entire inner TCP/UDP datagram within an ESP header.
ESP is an IP protocol in the same sense that TCP an...