[stewie]

hola!

My Setup:
Two UTs (UT1 and UT2) connected through siteVPN (UT1 is the Server). Each one with his own LAN (LAN1 and LAN2). Everything between this two sites is running lovely (accept vpn reinitions every ~45min).
Now i'm trying to setup clientVPNs. The Client (WinXP 172.16.0.9) connects, but i can't reach (ping) a W2K3 (192.168.201.1) in LAN2 behind UT2. This Server is reachable from LAN1.

I dumped my ping at UT1:
16:36:06.248045 IP 172.16.0.9 > 192.168.201.1: ICMP echo request, id 1024, seq 50688, length 40
and at UT2:
16:36:07.281408 IP 172.16.0.9 > 192.168.201.1: ICMP echo request, id 1024, seq 4609, length 40
16:36:07.281501 IP 192.168.201.1 > 172.16.0.9: ICMP echo reply, id 1024, seq 4609, length 40

The Server in LAN2 replies, but the reply is stopped on the way back to UT1.

What I tried:
- different Firewall and packetfilter rules.
- disabled firewall on UT1 and UT2
- added static route on UT2 for the ClientVPN Network

What am I doing wrong?

saludos

stewie