I have VPN between two sites (each with an ER605 router managed by an OM200) connected using IP-sec. Site B does not have any pubically accessible IP address (the ISP NAT's everything so there is no way that I have found to get inbound traffic)  So the VPN is created with Site B in initiator mode and site A in responder mode.  I have a server at site B that I would like to be able to access from the outside world.  Since the site it is not accessible from the public internet, I was hoping I could create a port forwarding rule at site A to forward to the server at site B.  But the router doesn't seem to want to forward through the VPN The rule works: if I set it to a server in Site A, the external requests come through, but if I change the destination IP port to an IP in the Site B network, the request is not sent.  Is there something I am missing: a static rout or something to tell it to allow an external message to be forwarded through the VPN?  Or something in the Site B router to tell it to expect this?  Or this just not possible?