I'm experiencing an issue similar to others posted in here. I have a 2611XM that is currently acting as a local DHCP server and firewall. I would like to be able to VPN to the router and be able to connect to the local network as well as the internet. I would prefer to use split-tunneling, but am willing to settle for connecting through the router.
At this point, the VPN Client 4.8 can connect to the router and turn up a tunnel. I am unable to ping anything on the local network but can ping internet IPs. To add to the confusion, while I can ping public IPs, I cannot resolve hostnames via DNS or browse to web pages. It seems like traffic is getting out, but not coming back... Most likely a NAT issue, but I don't know where. I've attached the config. Any assistance would be appreciated.
After the client connects, it gets the following:
GW: 10.7.7.254, 10.0.0.1
The part that I find odd is the second gateway it receives and the subnet.
UPDATE: I seem to have resolved this issue by playing with the ACLs.
Table of ContentsIntroductionVersion HistoryPossible Future
UpdatesDocuments PurposeNAT Operation in ASA 8.3+ SectionsRule Types
Network Object NATTwice NAT / Manual NATRule Types used per SectionNAT
Types used with Twice NAT / Manual NAT and Network Obje...
Table of Contents Introduction:This document describes details on how
NAT-T works. Background: ESP encrypts all critical information,
encapsulating the entire inner TCP/UDP datagram within an ESP header.
ESP is an IP protocol in the same sense that TCP an...