I found the following post in the Firewalls area this morning, which fixed my problem. The gist is to do the following:
- Edit your VPN policy
- Go in advanced configuration
- Activate the source NAT with Egress Interface
This works, but the contributor of the information says its a workaround and that the underlying issue may be a routing problem. In site-to-site configs I've seen static routes for routing the the tunnel. Is that required/possible in a dialaup VPN? Or should I be satisfied with the directions above and just leave well enough alone?
I've attached my now working config...