I configured a VPN tunnel , VPN Tunnel is UP and I see Encap & Decap Value in ipsec sa command.
When I do a packet tracer sourcing from inside interlace ( from where Interested traffic is initiating ) to Remote Destination it is allowed while hitting the correct acl , correct nAT exempt rule.
But Client is saying Client is not able to hit to remote server application ?
What are other areas I can check ? How can I do a
--- asp drop to confirm that ASA is not dropping the traffic ?
--- How to confirm I am receiving return traffic from Remote Interested traffic ?
Note :: Both Interested traffic is not behind nat
You can set up a packet capture on both sides of the tunnel. This way you can see that the RDP traffic is making it to the other side.