I recently upgraded to 8.3.2 and I was aware of the NAT changes but even after reading https://supportforums.cisco.com/docs/DOC-12569 I'm still unable to rectify VPN network 192.168.100.0 communication with hosts on 172.16.1.0 and 172.16.9.0. The VPN clients connect from the outside interface and I'm trying to ping hosts on the inside and dmz, 172.16.1.0 and 172.16.9.0 respectably. The VPN client shows the two previously mentioned networks as security routes but still not pong to the ping.

# sh nat

Manual NAT Policies (Section 1)

1 (inside) to (any) source static obj-172.16.9.0 obj-172.16.9.0 destination static obj-192.168.100.0 obj-192.168.100.0 unidirectional

    translate_hits = 0, untranslate_hits = 0

2 (inside) to (any) source static obj-172.16.1.0 obj-172.16.1.0 destination static obj-192.168.100.0 obj-192.168.100.0 unidirectional

    translate_hits = 0, untranslate_hits = 0

3 (inside) to (any) source static obj-172.16.1.0 obj-172.16.1.0 destination static obj-172.16.12.0 obj-172.16.12.0 unidirectional

    translate_hits = 0, untranslate_hits = 0

4 (dmz) to (outside) source static obj-172.16.9.0 obj-172.16.9.0 destination static obj-192.168.100.0 obj-192.168.100.0 unidirectional

    translate_hits = 0, untranslate_hits = 0

5 (dmz) to (outside) source static obj-172.16.9.0 obj-172.16.9.0 destination static obj-172.16.12.0 obj-172.16.12.0 unidirectional

    translate_hits = 0, untranslate_hits = 0

Auto NAT Policies (Section 2)

1 (dmz) to (outside) source static obj-172.16.9.5 interface service tcp www www

    translate_hits = 0, untranslate_hits = 142

2 (dmz) to (outside) source static obj-172.16.9.5-01 interface service tcp 3389 3389

    translate_hits = 0, untranslate_hits = 2

3 (dmz) to (outside) source static obj-172.16.9.5-02 interface service tcp ldap ldap

    translate_hits = 0, untranslate_hits = 0

4 (dmz) to (outside) source static obj-172.16.9.5-03 interface service tcp ftp ftp

    translate_hits = 0, untranslate_hits = 0

5 (dmz) to (outside) source static obj-172.16.9.5-04 interface service tcp smtp smtp

    translate_hits = 0, untranslate_hits = 267

6 (dmz) to (inside) source static obj-172.16.9.0 172.16.9.0

    translate_hits = 4070, untranslate_hits = 224

7 (inside) to (dmz) source static obj-10.1.0.0 10.1.0.0

    translate_hits = 0, untranslate_hits = 0

8 (inside) to (dmz) source static obj-172.16.0.0 172.16.0.0

    translate_hits = 152, untranslate_hits = 4082

9 (dmz) to (outside) source dynamic obj-172.16.9.0-01 interface

    translate_hits = 69, untranslate_hits = 0

10 (inside) to (outside) source dynamic obj_any interface

    translate_hits = 196, untranslate_hits = 32