From owner-freebsd-net@FreeBSD.ORG Wed Apr 20 07:42:36 2005 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 186A916A4CE for ; Wed, 20 Apr 2005 07:42:36 +0000 (GMT) Received: from bsd.dino.sk (bsd.dino.sk [213.215.72.60]) by mx1.FreeBSD.org (Postfix) with ESMTP id 473F243D2F for ; Wed, 20 Apr 2005 07:42:35 +0000 (GMT) (envelope-from bsd@dino.sk) Received: from [213.215.74.194] ([213.215.74.194]) (AUTH: LOGIN milan) by bsd.dino.sk with esmtp; Wed, 20 Apr 2005 09:43:52 +0200 id 000000F2.42660838.000036F5 From: Milan Obuch To: freebsd-net@freebsd.org Date: Wed, 20 Apr 2005 09:42:31 +0200 User-Agent: KMail/1.6.2 References: <42658CD3.1050900@icyb.net.ua> <200504200930.06372.bsd@dino.sk> <4266063E.5000606@elischer.org> In-Reply-To: <4266063E.5000606@elischer.org> MIME-Version: 1.0 Content-Disposition: inline Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit Message-Id: <200504200942.31565.bsd@dino.sk> Subject: Re: cisco vpn experience? X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 20 Apr 2005 07:42:36 -0000 On Wednesday 20 April 2005 09:35, Julian Elischer wrote: > Milan Obuch wrote: > > On Wednesday 20 April 2005 09:02, Julian Elischer wrote: > >>Andriy Gapon wrote: > >>>If you are more interested in "road warrior type configurations" rather > >>>than site-to-site (judging from your refrence to special cisco vpn > >>>clients), please take a look at security/vpnc and google:ipsec-tools > >>>(not in the ports yet). > >> > >>thanks.. > >>ended up using vpnc > >> > >>>I have used the latter with CheckPoint FW (with modifications to code), > >>>so it is quite possible that it now works with Cisco VPN too (don't be > >>>fooled by their home page, they already have version 0.5.1 if you go to > >>>Downloads link). > > > > Slightly off-topic but still similar question - is anybody using BSD to > > connect to Cisco series 3000 VPN concentrator? We use mainly FreeBSD in > > our network, and I need this type of connection... > > this was my question.. > the answer was to use vpnc (instead of the linux or Windows clients cisco > give you to use) > > > > the 3000 can also do 'normal' ipsec tunnels too > so that is probably usable from "normal" freebsd ipsec. > OK. Are there any pointers/urls for working config? I did not use anything like this yet. Milan