08-15-2018 06:54 PM
Hello All,
I configured a VPN tunnel , VPN Tunnel is UP and I see Encap & Decap Value in ipsec sa command.
When I do a packet tracer sourcing from inside interlace ( from where Interested traffic is initiating ) to Remote Destination it is allowed while hitting the correct acl , correct nAT exempt rule.
But Client is saying Client is not able to hit to remote server application ?
What are other areas I can check ? How can I do a
--- asp drop to confirm that ASA is not dropping the traffic ?
--- How to confirm I am receiving return traffic from Remote Interested traffic ?
Note :: Both Interested traffic is not behind nat
08-15-2018 07:49 PM
You can set up a packet capture on both sides of the tunnel. This way you can see that the RDP traffic is making it to the other side.
08-15-2018 09:26 PM
08-16-2018 12:16 AM
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide