Hi,
I would make sure the VPN is up using "get sa" from the CLI. If the VPN is up, I would check to make sure the Policy is at the top (get pol from trust to untrust). If it's not, the first policy would match and your traffic might not be encrypted across the tunnel.
-John