Here's what I have:
Main Office: Cisco ASA 5510, 192.168.0.0/24 (Remote access VPN terminates here)
Site to Site (IPSEC) VPN from the main branch to each branch office:
Branch 1: Cisco ASA 5505, 192.168.6.0/24
Branch 2: Cisco ASA 5505, 192.168.5.0/24
Branch 3: Cisco ASA 5505, 192.168.7.0/24
Branch 4: Cisco Pix 501, 192.168.4.0/24
From the main office, I can connect to any host on any branch subnet, and from any branch, I can access any host on the main office subnet.
What I can't do is use the Remote Access VPN to the main branch and talk to any host on any branch, and I can't connect from a branch office to a host on another branch office.
Is there a name for this limitation, and does anyone have a work-around to enable this functionality, hardware upgrade, or configuration change on the Cisco equipment to enable this?
We need this type of functionality so that home users can VPN to the main branch, and then remote desktop as needed to their branch office computer.
I suspect it might be some security rule or routing table. If I need to post part of any branch or main office Cisco configuration I will.