The problem first became apparent mid-day yesterday. I went a few rounds with it for a couple of hours, then involved a colleague. He pretty much checked everything that I had already, but sometimes something easy can get overlooked. Both of us were perplexed for the rest of the afternoon. It was one of those problems that 'went home with me', I couldn't get it out of my mind, which is why I posted about it here.
This morning I woke up, and got to thinking about NAT and tunnels. I remoted in to the appliance from home and found what I was looking for in the 'help'(?) for the IPsec and NAT contexts of the IOS. 10 minutes later, I had it working, and tested it from home using 3 computers all logged in and passing traffic.
After it was all said and done, I'd say I was beating my head against the wall for around a half day(5hours). In a way, I'm glad I ran into the issue and solved it. It was a good learning experience.
Good job, I’m impressed. (Hopefully, you’ll hear the same from someone who counts, like your boss)
Also, thanks for the “file under future reference” information.
This is one of the things the 9 to 5 people don’t appreciate about our job; the willingness, on our part, to work from home, after hours, solving this kind of issue.