I would like to know if anyone is using or is considering using a PIX firewall positioned between a Cisco VPN device (7140 in my case) and the corporate network to provide for firewalling for VPN traffic? My goal is to be able to use the PIX to enforce security policies for users/groups of users and lan-to-lan vpns between our business and vendors who need to access various resources for support purposes. One big issue that needs to be addressed is routing. I would ideally like to use GRE to allow me to run OSPF for my lan-to-lan sites across the VPN, but then with the PIX between my corporate OSPF network and the VPN OSPF network seems to introduce some issues. What other designs are being used to achieve these same objectives for security and routing? Thanks in advance.