No VPNs setup currently, simple firewall to protect internal network and provide internet NAT. 20ish devices connected, using internal DHCP to hand out IP and DNS information. VMWare VMs are blocked from internet access, or sometimes the host machine is blocked and the VM is allowed. Is this a problem with SPI? If so, should I return the device and get something else?

By blocked, I mean the VM (or host) can ping the gateway, but not beyond (tried next hop and