well all of you know already that
vpn client on the machine is configured with TRANSPARENT TUNNEL (IPSEC over UDP)
while if you go to ASA and run the command # show run all
you will notice IPSEC over UDP is disabled and enalbed on TCP
HOW DOES IT WORK with ASA ????
i have not seen any example or lab so far where they have manipulated these values on ASA ????
suppose if u think of NAT-T on UDP 4500,
then my arugment is : what is there is no nat and no nat-control configured ...
This is just a fair and open discussion, all constructive solutions will be appreciated.
By default, the VPN client uses IPSec over UDP on UDP port 10000. When VPN client negotiates the parameters with the corporate tunnel device then it negotiates this parameters as well and agreed upon the negotiated one. So don't worry about it
Network Security Specialist