Hi Maaz,
Something else to consider:
When users on VPN try to access email, what (if any) error messages do they get? In other words, does their email client respond with anything coming back from the email server(s)?
Bear in mind that sendmail (and I expect dovecot, but I'm not familiar with it) can be configured to respond to particular IP subnets, domains, etc.
It is possible, the sendmail configuration is either ignoring the users on the subnet the VPN provides.
It's worth checking what subnet your internal LAN uses, and what subnet your VPN connections have.
Another thing to check is your email relay configuration - same type of issue. Sendmail can be configured to relay email that originates from specific subnets, domains, etc. (this is to prevent spammers hijacking your server).
Any email originating from a processor that is *not* the email server itself is making use of the relay facility. This includes your internal LAN. Once again, different subnets require extra 'rules'...
Failure to relay (and other failures) are often apparent at the email client (the server will respond with messages like 'Relaying not allowed', etc. Of course, this is in addition to information found in the email logs on the server.
If you do have any error messages at the client end, post them up - they may give more of a clue.
IMO your problem is a configuration issue on your email server for users coming in on the VPN subnet rather than firewall or other networking issues. Then again, your VPN server *is* a windows box! :-^
Regards,
Andy Bruce
I Love it when a plan comes together!
