Hi All, A quick question for the IP(S)sec savvy... For a remote client allocated a private stub domain IP address, is L2TP the only _practical_ means (at this time) to run IPsec between the client and SG via NAT? Thanks in advance, Mick Gallagher