Hi! OK. I have this situation VPN_CLIENT(w2k box) ---> router ---> FIREWALL (NAT) ---> M$ Server I want to configure only the Firewall. First, I tried to create a connection with pptp. Pptp need protocol GRE and iptables don't support nat with protocol GRE. I must recompile the Kernel... M$ server also supports ipsec and l2tp. Is ipsec/l2tp supported with iptables without recompile the kernel? It's more difficult??? Thanks! SERGI
