1. need to establish lan to lan vpn tunnel between two pix firewalls2. need to allow inside vpn client go through the pix firewall to access other sites. and the firewall has only one ip address and do pat for inside clients3. "fixup protocol esp-ike...