I have a really interesting problem.  I have 2 VM's in the same region on the same internal subnet.  The 1st VM provides remote access via a VPN.  The VPN is using NAT and allows remote users access to the internal subnet and the 2nd VM.  I have one user that periodically will lose their connection and everything times out after that.  When this happens, the user can't even ping the 2nd VM.  The VPN tunnels stays up, the user can ping the internal NIC on the 1st VM but not the 2nd VM on the same subnet.  Other users will lose their connection as well, same symptoms, I suspect because of NAT and I say this because I can give the user in question direct access through the Firewall to the 2nd VM and eventually the same thing happens, the connection will start timing out and ICMP no longer works.  It's behaving like the users source IP get's blacklisted for a period of time and than their connection starts working again for no apparent reason.  The time outs can last for hours or even days.  I have looked at VM logs, OS logs and I'm coming up with nothing.  Any help is greatly appreciated!!!