I am use ISA 2006 on Win2k3 standard. I have VPN rules set up and they seem to work fine. The corporate network is on a 192.168.1.x and I am finding that when the vpn clients are on the same subnet they can connect but they cant access internal resources. If they are on anything other that 192.168.1.x they are fine. I have tried to configure ISA to use our dhcp server and dns servers as well but no joy. When the client connents it shows all the correct settings for DNS suffix, ip address, default gateway and dns servers. I know this may be caused by IP spoofing on the ISA server but how do you get around this????