@Manuel-Rangel 

The VPN against Cisco ASA works well, but there are some limitations that you should be aware of.

On ER605 Side of VPN
you cannot select several local networks, in the same VPN prolicy then it does not work
If you need several local networks in the VPN, create a VPN prolicy for each network.
MAKE them exactly the same but with different local networks.

this also applies if there are several remote LANs on the cisco asa side of the VPN
only a remote LAN in a VPN prolicy.

somthing like that

one remote subnet

one local networks

  @MR.S Thanks for the response.  At this point we only have one network permitted across the tunnel.  We do not have any additional subnets/networks.  I do have an SA up for the tunnel.  I myself am not onsite to further troubleshoot so I am having to rely on the end-user to attempt to connect to a resource on the ASA side.  They are telling me that it is not working so I am trying to figure out if there is another way to confirm that the VPN tunnel is working and this is not a firewall rule issue.

  @Manuel-Rangel 

can you share a picture of VPN policy confuiguration?

on omada, what is VPN status? do you see a connected tunnel? 

if you have configured some ACL on router switch or EAP deactivate this

ON ASA

if you have deactivated bypass interface access list for inbound vpn session you have to create alow access in access roule for remote lan

hvat is status on vpn on cisco asa? is it somthing like this?

  @Manuel-Rangel 

something that is very easy to forget is that the resource that you want to access on the remote site also has a firewall.
if it is a Windows machine, it has a firewall in which the remote lan must be approved

  @MR.S 

On the TP-Link I do show SA's that are up and traffic statistics are incrementing. 

I can also generate traffic from the cisco asa using packet tracer and it is forwarding the packet.  It also shows the SAs up as well. 

I believe this is going to be an issue outside of the firewalls/routers that are establishign the VPN tunnel.  To you point it might be an issue with a local firewall on the PC or something with the resources that they are trying to access.

  @Manuel-Rangel 

it looks like the vpn is fine
there is not much that can be the problem if the vpn works,
1. ACL on TP-Link router
2. ACL on ASA
3. Firewall that blocks the remote site on the device you need access to.
  many people have problems with this, most forget this firewall.

everything online does not have a firewall. try scanning with ipscan25, something should answer

  @d0ugmac1 

I have some ER605v2 with s2s for Cisco ASA and Cisco FPR. it's basically plug and play, never had a problem with it on those routers.
but you say there is a new beta for ER605v2, where can I find it?

  @d0ugmac1 

It's not beta but the official version that came a few days ago :-) I've been using it for a few days now..

but thanks