We have a single isp terminating on one of the interface of ASA firewall, and i have configured ssl vpn on this ASA, every thing is working fine , vpn is able to connect and the user is able to reach the internal network,
After getting connected to SSL Vpn , the user wanted to reach at least the Exchange server , which is located over the internet
one solution for this could be split tunnel, but our boss , dont want this to be configured.
Once the user gets successfully connected to SSL vpn all the traffic is coming towards ASA
. so my question is can we route the exchange traffic back to internet for that particular vpn source ip address range at ASA
Also , can u pls provide me the details packet flow of ssl (remote to site) vpn client, How the packets initiates from client and reaches the remote subnet and comes back to client.
Table of ContentsIntroductionVersion HistoryPossible Future
UpdatesDocuments PurposeNAT Operation in ASA 8.3+ SectionsRule Types
Network Object NATTwice NAT / Manual NATRule Types used per SectionNAT
Types used with Twice NAT / Manual NAT and Network Obje...
[toc:faq]Introduction:This document describes details on how NAT-T
works.Background:ESP encrypts all critical information, encapsulating
the entire inner TCP/UDP datagram within an ESP header. ESP is an IP
protocol in the same sense that TCP and UDP are I...