We have the following VPN path setup with an outside vendor:
[them]----[internet]----[our firewall]----[switch]----[domain controller, internal network, etc]
The VPN (ipsec) tunnel has been established and they can ping our firewall box, and we can ping them, but they can't ping anything past the firewall. They're trying to ping an internal networked printer but get timed out. I can ping to theirs just fine.
Since they can ping the firewall itself, I'm assuming something is holding it up at the domain controller level. What do I need to check to allow them to ping internal machines?