On Fri, Feb 24, 2012 at 4:30 PM, David G. Miller dave@davenjudy.org wrote:
I think I'd try tcpdump, or some other tool, and see what's happening.
I ran tcpdump on my gateway's interface to the the 'net while running a ping on the client. I could see what I'm pretty sure were the ping returns (hard to tell since it's VPN traffic). I'll move the tcpdump to watching what goes from the gateway to the VPN client although the VPN traffic will then be mixed in with any other non-VPN traffic between the client and my gateway. I can cut back on this traffic but I can't stop it or filter it the way I cann at the gateway's exterior NIC.
Does the VPN create its own tun interface? If so tcpdump should be able to see the decrypted packets entering and leaving there.