Hi Thomas, I've been re-reading the VPN in a back to back setting and have a question about the following statement and how it applies to DNS. http://www.isaserver.org/tutorials/Configuring_VPN_Access_in_a_Back_to_Back_ ISA_Server_Environment.html "One other thing you might want to do is configure a DNS server publishing rule on the internal ISA Server, if you wish the DMZ hosts to use a DNS server on your internal network. This is not required by the back to back ISA Server VPN configuration, but it's something you should think about." I'm not sure if you meant that it is a good thing to publish the DNS server on the internal network or not and just looking for clarification on that issue. Also, would this be the same setup to VPN out through the back to back setup? From my internal network through the internal firewall through the dmz and out through the external vpn? Thank you, Joseph "I am only one, but I am one. I cannot do everything, but I can do something. And because I cannot do everything, I will not refuse to do the something that I can do. What I can do, I should do. And what I should do, by the grace of God, I will do." - Edward Everett Hale