I have a VPN Concentrator 3020 and remote clients using the VPN Client. Is it possible for the clients connected to the concentrator to exchange traffic between them? The challenge that I see is that the traffic from a client arrives to the concentrator on the public interface and it should go back through the same interface. So, anybody tried this before?
Absolutely they can communicate one another through the IPsec tunnel , say if your RA clients IP Pool is 172.16.1.0/24, RA client_1 connects to your VPN concentrator and gets IP 172.16.1.50 and Subsequently RA client_2 connects and gets IP 172.16.1.51 they will be able to ping each other as well as exchnage data RDP or copy files etc.. as long the RA clients PCs do not have any firewalls turned on.
That's not what I see in my implementation. I can ping each client from the 3000 concentrator, but one client can not ping the other. Is there any configuration that needs to be added to either the concentrator or/and the VPN clients?
Table of ContentsIntroductionVersion HistoryPossible Future
UpdatesDocuments PurposeNAT Operation in ASA 8.3+ SectionsRule Types
Network Object NATTwice NAT / Manual NATRule Types used per SectionNAT
Types used with Twice NAT / Manual NAT and Network Obje...
Table of Contents Introduction:This document describes details on how
NAT-T works. Background: ESP encrypts all critical information,
encapsulating the entire inner TCP/UDP datagram within an ESP header.
ESP is an IP protocol in the same sense that TCP an...