Steve, The only thing I can think of is a problem with established traffic between your local and remote subnets. Your computers I am going to assume have a default gateway set to go directly to your firewall, from their, you have a static route set for the 10.1.0.0 network to go to your local LAN IP of the VPN appliance. Here is where I believe the breakdown is. The VPN appliance will connect to the remote VPN appliance just fine, however, on the return side, when their LAN (10.1.0.0) tries to contact your LAN (192.168.1.0), the VPN appliance delivers these packets directly without going back through the firewall. I may be wrong on this, but if you are sending TCP traffic across the VPN tunnel to the remote subnet, the firewall could be resetting those states because the session traffic is not working.
Try this, from your workstation, setup a static route (windows do "route add 10.0.1.0 mask 255.255.255.0 192.168.1.253") and try to send traffic to the remote hosts. Curtis
