Cisco PIX with FreeS/WAN

I’ve written up some example configs to get a Cisco PIX working with FreeS/WAN over IPSEC with a pre-shared key. I’ll probably do one with RSA keys soon too.

Apparently there is an endian-ness problem with the Radeon drivers on powerpc when in dual monitor mode. I’ve managed to get Michel Daenzer and Ben Herrenschmidt’s attention (with the help of Simon Urbanek) so hopefully it’ll be fixed soon.

I spilt pineapple juice on my PowerBook. It’s sticky now and the speaker clicks.

Comments

Atul Chaudhari says:

HI John,

Your example is amazing. I have a cisco VPN concentrator at client end they gave me the preshared key and other details
|VPN Schema | |IKE |
|————————+———————-+————————-|
|Authentication Mode | |Preshared Keys |
|————————+———————-+————————-|
|Authentication Algorithm| |MD5/HMAC-128 |
|————————+———————-+————————-|
|Encryption Algorithm | |3DES-168 |
|————————+———————-+————————-|
|Diffie-Hellman Group | |Group 1 (768-bits) |
|————————+———————-+————————-|
|IKE Time Lifetime | |86400 |
|————————+———————-+————————-|
|Authentication | |ESP/MD5/HMAC-128 |

They use the group 1 dh and authentication and encryption is different than the one found in openswan or freeswan.

Please advice.

Thanks and Best regards
Atul Chaudhari

Leave a Reply