Hi, I have a 2811 router running the latest K9 IOS. The router terminates a 3mbit MLPPP circuit and acts as a router / NAT device serving a single internal subnet with around 100 users. It also acts as vpn endpoint with a PIX506 at a remote location. What are the security functions of this advanced IOS that I can use? How can I activate packet inspection etc. and use this device as a stateful firewall that detects anomalies within traffic and warns me etc.?