Hello, I have a question regarding VPN implementation. <internet cloud (users)>---(VPN)---<router>-------<Private network 1> |-------<Private network n>|-------<Private network n+1> The concept is to create a different tunnel (L2TP-IPsec) for each user, but I would like to keep the configuration as simple as possible for the user. So my questions are : Is there a way to implement this toplogy in a simplest way?(see below) Can we avoid using groups? Here is an idea of the current config: ip local pool VPN 172.16.0.1 172.16.0.30 ip local pool VPN2 172.16.0.33 172.16.0.62 ! crypto isakmp client configuration group USER1_VPN key user1 pool VPN1 acl ACL1 netmask 255.255.255.240 ! crypto isakmp client configuration group USER2_VPN key user2 pool VPN2 acl ACL2 save-password netmask 255.255.255.240 ! Thanks in advance for your help :beerglas: