I'm administering a small business network across two offices. Both offices have a PIX501 firewall. Right now we have a working PIX to PIX VPN tunnel between offices and everything is working great. But I am trying to get remove VPN access working for people outside the office with laptops and Cisco VPN Client software. My problem is with NAT 0. I have an access group for the PIX to PIX VPN and an access group for the VPN Client. I can get either VPN to work depending on which access list the NAT 0 statement has, but I can't get both groups to work at the same time. If I put one of the remote clients into the PIX to PIX access group, the remote client connects, but there is no network access. Can someone look at my config and help me??