I am following this guide. Everything makes sense until I edit the acl 111. The moment I put permit ip any any. Outside cannot access my router. As a CLI ninja pointed out from another post, its because by adding permit ip any any, I'm telling the router to translate any and all traffic passing through it using overloading on my public interface(gi0/0/0). So, return traffic is going to get the NAT as well.
pastebin of sanitized config the private ip behind my router is 192.168.38.0/24, the ip i am assigning to the vpn client is 192.168.56.0/24
That said, tried with anyconnect 4.1, input the public ip and it said "connection attempt has timed out. Please verified internet connectivity"
Thanks.
[link] [comments]