note : in error message (Client_public_addr=10.237.101.131) this is not public ip for client it is private ip router toke from DHCP server because in client side i dont have dedicated public ip for vpn because it is dsl ..
as i mentioned in first discussion i have only 1 public ip in the side of 1841 router
Have you noticed that the client couldn't reach the server as i am not seeing a default route configured on the client side !!!!, Configure a default static route pointing to your internet connection with admin distance of 2 and let me know the result.
VPN between two sites one only have public ip another not using
your IPSec peer is 188.8.131.52 SO the client must has a route to reach this ip address.
you do not need to configure a static route to reach 184.108.40.206/24 as when the IPsec tunnel established, the EasyVpn server will inject a default route pointing to the IPSEC tunnel itself, SO i have asked you to add a default route with AD 2.
OR you can add a more specific route to 220.127.116.11 instead of the default route.
Table of ContentsIntroductionVersion HistoryPossible Future
UpdatesDocuments PurposeNAT Operation in ASA 8.3+ SectionsRule Types
Network Object NATTwice NAT / Manual NATRule Types used per SectionNAT
Types used with Twice NAT / Manual NAT and Network Obje...
Table of Contents Introduction:This document describes details on how
NAT-T works. Background: ESP encrypts all critical information,
encapsulating the entire inner TCP/UDP datagram within an ESP header.
ESP is an IP protocol in the same sense that TCP an...