We do not have plans to implement an IPSEC based VPN solution at this time.
I have an alternative proposal: an unencrypted
L2TP link to the same network segment where your DHCP server or border router is, so that DHCP requests over it get a *.dsl.dynamic.fusionbroadband.com address, static IP customers can route over it, and in either case, IPv6 traffic over Sonic's 6RD server will work over it, graduating to working native DHCPv6 when you have that. It would also defeat AT&T's or others' QoS and not have any ports blocked. Over a dedicated link such as the FTTN accounts, the encryption doesn't really add any value and costs significant processing overhead, making it unsuitable to run on a home router, unlike simple L2TP. If it works well, maybe you can even deploy it inside your own CPE for FTTN accounts; AT&T U-verse customers are allowed to use any VDSL2 modem they want, just without support, and many do. How about it, folks?