Shawn, Thanks for the note re non-IP traffic. I always point out (in my presentations) that if one is tunneling non-IP traffic, then the IPsec access control don't help much, and so use of L2TP in this context is certainly appropriate. Steve