i give you a brife explnation on what do i want to achive with ipsec tunnel, i want to conect two site through Internet , Site A has watchgaurs (managed by me) as Internet gateway and the Site B has Cisco ASA as internet gateway which is managed by ISP.
I communicate with ISP and wemanaged to setup ipsec/BOVPN successfully, phase1 and phase 2 can establish. but i cannot any PC's behand firewalls.
Watchgaurd model is
site A ip subnet is 192.168.100.0 default gateway 192.168.100.1 (watchgaurd)
Site B ip subnet is 192.168.4.0 default gateway 192.168.4.3 (Cisco ASA)
Note: From a PC at site B, i can ping watchgaurs (192.168.100.1) Internal ip address but not any other machine behind it.
Also from a PC at site A, i cannot ping any ip address at site B.
so i think that routing/natting should working fine at Cisco ASA because site B can ping my watchggautd Internal IP.
i think there should be a routing/NAt issue at watchgaurd which cannot route packet to inside or from inside route to 192.168.4.0
I addedd watchgaurd and Cisco ASA configs, the red lin shows the new configs on ASA
your assist on this is much appreciate.