after much searching and trial and some error. I think i have solved the problem. It seemed to be loosing or having packets getting corrupted or out of order as i have seen some documents describe it. I ended up changing the maximum MSS on one firewall. Since i am new at this, it took a long time to find this setting so i will include it here for others that may be having similar problems.
system, advanced. firewall & nat tab
Scroll down to VPN packet processing, check box enable MSS clamping on VPN traffic. Maximum MSS 1400.
I disconnected the VPN and let it reconnect, just to make sure changes happened. After that print jobs between builds and web pages worked again.
Thanks.

@Tirthankar
You need to allow access from the remote site here, so from 192.168.1.0/24.

Nothing to discuss here I guess. Ticket has been opened in Redmine and a todo was assigned to version 2.8.0.

I carefully reviewed my settings against a working configuration and discovered that a few things were misconfigured or missing. I now have it working!

Now to try the same on an iPod!

Yeah like @michmoor is mentioning, I'd double check the config on both sides for Phase 1 and 2 and be sure they are identical.

If that still doesn't work then I'd dig deeper on the deleting SA issue mentioned by @Konstanti

Might also be worth checking to be sure the Fortigate is fully updated so there isn't a chance for some old bug.

Tried to create a 1:1 NAT, but still not working

@mcury It was a missing firewall rule - now working fine.

@ethan-103
You can do this with BINAT for sure, but this requires a policy-based tunnel.

With VTI you can configure a NAT 1:1 to achieve this.

For example 10.0.20.0/24 would nat to site A 172.16.5.0/24 ( 10.0.20.100 = 172.16.5.100)

For this example you have to add a NAT 1:1 rule to the VTI interface at A, where the "External subnet IP" is 10.0.20.0 and the "Internal IP" is type Network > 172.16.5.0/24.

Update: Wifi calling seems to work with no outbound nat rules other than the default enabled, however I can only get it to actually use it when I put the phone in a faraday cage that blocks cell, or airplane mode. I don't know if this is something specific with my carrier, or my Pixel 8 pro software. I did test with and s21 and it didn't use it until I did the airplane mode and enable wifi thing. Not sure if it is preferring LTE instead of wifi because of how strong our LTE is in our area, or if this is a cause of a misconfigured fire wall. Still having a bit of a head scratcher at this one, especially because I went into settings and told it to prefer wifi over LTE, but who knows.

@Dimitriy46 the P2 needs to exist on both ends, and you may have that. I would also try to include the entire /24 in a single P2 and see what happens. I have a connection with an ASA where they have multiple P2 for the same subnet, but I just have a /24 and it figures it out.

@Bot
That's nothing that could be effected by pfSense or the VPN. It might rather be that the destination server is blocking access from outside of the local subnet.