I have site-to-site working very smoothly. At corporate site, we have
two
paths to the Internet, a 3rd party firewall and the vpn master. I am
trying
to configure client-to-site vpn on the vpn master but having
difficulty. I
would assume it's because the vpn master is not the default gateway
for our
internal servers (the firewall is). If I enable dynamic nat on vpn
master
private interface, the client-to-site works but this breaks the
site-to-site.

I don't fully understand the ins and outs but is there a way to have
both
client-to-site and site-to-site on the vpn master if it is not the
default
gateway for our corporate network?

Thx,
Tony