On Fri, Feb 24, 2012 at 4:30 PM, David G. Miller <dave at davenjudy.org> wrote: >> >> I think I'd try tcpdump, or some other tool, and see what's happening. >> >> > I ran tcpdump on my gateway's interface to the the 'net while running a ping on > the client. I could see what I'm pretty sure were the ping returns (hard to > tell since it's VPN traffic). I'll move the tcpdump to watching what goes from > the gateway to the VPN client although the VPN traffic will then be mixed in > with any other non-VPN traffic between the client and my gateway. I can cut > back on this traffic but I can't stop it or filter it the way I cann at the > gateway's exterior NIC. Does the VPN create its own tun interface? If so tcpdump should be able to see the decrypted packets entering and leaving there. -- Les Mikesell lesmikesell at gmail.com