I've a basic question related to support for NAT with IPSec. I understand that it is not possible to do NAT after IPSec encryption of packets. The workaround when NAT is involved in tne path is to use NAT-Transparency. But the document on CCO at http://www.cisco.com/en/US/partner/tech/tk583/tk372/technologies_configuration_example09186a008009486e.shtml has steps for configuring VPN when a firewall in between the IPsec PATH is doing NAT. I've not tested this setup but was wondering if the configuration suggested in the CCO document would work. Any ideas?