Why are you not using the ASA to hand out addresses for the VPN clients? It's cleaner to do it this way. Are the VPN clients being dropped onto the same layer 2 network as the Windows DHCP server? It sounds like you're using a DHCP relay setup as you're saying the ASA is handing off DHCP requests to the Windows DHCP server.
↧
