pfSense blocking ipsec client to work vpn traffic?

  • My current setup

    Client ---work vpn--->PFSense--->work vpn endpoint

    I am able to connect and my client gets the routes, etc. However, everything is blocked except for ping from client to anything at work VPN.

    If I use my hotspot on my phone, everything works so I know it's not my office.

    Is there something that I am missing or settings I should change? I am using out of the box pfSense with no modifications and default permit any from LAN net on LAN interface out to internet.

