Our client connects to our VPN3000 server via a W2K3 server, used to setup a L2L tunnel. For years he has only had to talk to one server on our side. Recently, we added a server, meaning I had to add a network list in the 3000 for 2 addresses and he had to create an additional rule on the W2K3 server. We have had problems since those changes were made. Right now as a work around, my side has not changed (2 addresses in network list), but he is having to change 1 rule on his side everytime he wants to access the other server. When he has rules in for both servers it will sometimes work, other times only one server will work, other times none will work. Has anyone ever seen a problem like this? It seems to be something in the rules he has setup but I don't know enough about the windows rules, does anyone have any documentation on setting up ipsec rules in 2003 server?