Hi,
You can open the ports though just take in count the security measures such as creating granular and specific rules matching only the necessary source and destinations
Hi,
As you mentioned the right way is to configure a split DNS in that way only the DNS queries matching the FQDN configured on the ASA will be routed over the tunnel to the ASA DNS server configured for the tunnel traffic
You can have more detaile...
Well there is no command to know the number of ACLs or NATs on the ASA you can see more detailed information via ASDM which will show the number of rules you have
Registry checkChecking for a Registry Key (Microsoft Windows Only)File checkChecking for a FileOS checkChecking the OSCertificate checkChecking for a Certificate (Microsoft Windows Only)IP Address CheckChecking for interface IP address