I have a simple pix to pix vpn setup between my 515 and a 501 at my remote office. For security reasons I currently I have the tunnel locked down so that users behind the 501 can only hit server A behind my 515. This is working fine, but I am curious if there is a way to allow all users behind my 515 to access all PC’s behind the 501, and yet still restrict the PC’s behind the 501 to only server A behind my 515? Thanks in advance.