re Darren Coleman
What are the chances? Higher than you'd think.
Security admins often set up IPSec gateways in aggressive mode using a domain name or user ID rather than IP address as identifier. Couple that with a VPN router with active DHCP server and you indeed have a piece of hardware that when plugged in calls straight home and establishes a tunnel.
I also wouldn't be surprised if said security admins configured the VPN to allow full access from the remote site too.