Kevin Buettner wrote:
snip
> Yes, setting the display to the address of your firewall and then
> portwarding (using "ipmasqadm portfw") it to one of your internal
> machines will work, but it's not encrypted.

  I've verified it comes in as cleartext if I redirect the
port.  Oy vey. I guess I'll have to lock down my preferred
box and skip having a firewall until I gain more of a clue
about VPNs.  Thanks much,
Steve

... It just bugs me to have an extra machine just sitting
there not _doing_ anything ;-)