Bill Sommerfeld [sommerfeld@apollo.hp.com] writes: Thanks for the information about RADIUS; it sounds like that rules it out as a possible way to implement ipsec auditing.... I'd say so - almost anything (Kerberized syslog, anyone?) would be more appropriate, I think. - Bill