Craig,

here part 2 of our discussion from the weekend with another subject.

Configured the VPN according to your writings. The VPN starts and data may
be passed(ping...) except from the slave. It seams that the packets are
being sent from the external(public) address through the tunnel and not from
the internal interface.

IP config:


|10.3.0.119/24
....BM-I...172.28.203.119/24|>>>><INET><<<<<|172.28.203.100/24...BM-II...10.3
9.0.100/24|

A host(10.3.0.102) behind 10.3.0.119 can ping 10.39.0.100 and a host behind
it(10.39.0.150). 10.39.0.150 can ping 10.3.0.*. BM-I can ping 10.39.0.100
but BM-II cannot ping anything in the 10.3.0.x subnet. I've also tried
NWPING -S 10.39.0.100 10.3.0.x without luck.

Here more infos:

--Tunnel addresses are 192.168.111.119 and 192.168.111.100. This is not used
elsewhere.
--IPFLT is not loaded on BM-I or II.
--BM-II has only 2 routes. Default = 172.28.203.119 and 10.3.0.0/24 >>
192.168.111.119.
--BM-I also has only 2 routes. Default = 172.28.203.100 and 10.39.0.0/24 >>
192.168.111.100.
--2x NW65SP1a
--2x BM38SP1a
--TCPIP stack update
--Default IP-Address is set on BM-II to 10.39.0.100.

Long story made short. I seams that the default IP setting doesn't take as
it sends from the 172.28.203.100 interface.

Any ideas?

Daryn