Slightly offtopic, but given the "recently" published vulnerabilities of WPS (Wi-Fi protected setup), and associated tools such as reaver (
http://code.google.com/p/reaver-wps), I've been relying more or less completly on IPsec/authpf for my home wireless network. Yes, its a crap AP with no way to disable WPS.
Anyway! I'm guessing that unless you have three-lettered government agencys snooping around on your network, even a backdoor'ed IPsec will provide more security than wpa2-psk's for the average network (with WPS) at the moment since there are no known published weaknesses.