I configured my router following instructions at:
formatting link
The goal of it is to enable VPN clients internet access, but rather trough VPN router's Internet connection then trough split tunneling. After configuration from the article above NAT is working fine, but CBAC does not inspect vpn user's traffic which results in denial of returning traffic. Where should I place CBAC inspect rule for inspection of vpn client's traffic? I tried on a loopback interface in both directions and also on the outside interface as inbound rule, but without success, while traffic from the inside being normally inspected.
Best Regards, Igor