My Vpn client can connect successfully to PIX and got ip 10.10.10.40 but i can not ping to network behind PIX , i tried to trace with wireshark and the ping packet reached to PC client inside the WAN but i got request time out from VPN Client
1206: ICMP echo-request from outside:10.10.10.40 to 10.10.20.5 ID=1 seq=13310 length=40
1207: ICMP echo-reply from inside: 10.10.20.5 to 10.10.10.40 ID=1 seq=13310 length=40
another question is , is it possible to use private subnet for VPN client pool without touch any router configuration , so if i use 192.168.1.0/24 as i pool how the pc on WAN cloud with ips 10.10.20.30 can replay back the packet goes to PIX and sent to VPN client?
Table of ContentsIntroductionVersion HistoryPossible Future
UpdatesDocuments PurposeNAT Operation in ASA 8.3+ SectionsRule Types
Network Object NATTwice NAT / Manual NATRule Types used per SectionNAT
Types used with Twice NAT / Manual NAT and Network Obje...
[toc:faq]Introduction:This document describes details on how NAT-T
works.Background:ESP encrypts all critical information, encapsulating
the entire inner TCP/UDP datagram within an ESP header. ESP is an IP
protocol in the same sense that TCP and UDP are I...