From owner-freebsd-questions@FreeBSD.ORG  Sun Apr 10 17:23:07 2005
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 3F6AD16A4CE
	for <freebsd-questions@freebsd.org>;
	Sun, 10 Apr 2005 17:23:07 +0000 (GMT)
Received: from mail26.sea5.speakeasy.net (mail26.sea5.speakeasy.net
	[69.17.117.28])	by mx1.FreeBSD.org (Postfix) with ESMTP id 0055743D4C
	for <freebsd-questions@freebsd.org>;
	Sun, 10 Apr 2005 17:23:07 +0000 (GMT)
	(envelope-from omniBSD@speakeasy.net)
Received: (qmail 15543 invoked from network); 10 Apr 2005 17:23:06 -0000
Received: from acute.anhedonia.com (HELO [10.20.30.10]) (omni@[66.93.24.213])
	(envelope-sender <omniBSD@speakeasy.net>)
	by mail26.sea5.speakeasy.net (qmail-ldap-1.03) with SMTP
	for <scott+lists.freebsd@fishballoon.org>; 10 Apr 2005 17:23:06 -0000
Message-ID: <425961D5.8090403@speakeasy.net>
Date: Sun, 10 Apr 2005 12:26:45 -0500
From: Ash <omniBSD@speakeasy.net>
User-Agent: Mozilla/5.0 (X11; U; FreeBSD i386; en-US;
	rv:1.7.2) Gecko/20041104 Netscape/7.1
X-Accept-Language: en-us, en
MIME-Version: 1.0
To: Scott Mitchell <scott+lists.freebsd@fishballoon.org>
References: <20050410153834.GA893@tuatara.fishballoon.org>
In-Reply-To: <20050410153834.GA893@tuatara.fishballoon.org>
Content-Type: text/plain; charset=us-ascii; format=flowed
Content-Transfer-Encoding: 7bit
cc: FreeBSD Questions <freebsd-questions@freebsd.org>
Subject: Re: Connect to Cisco VPN server from FreeBSD?
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.1
Precedence: list
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>,
	<mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>,
	<mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Sun, 10 Apr 2005 17:23:07 -0000

Scott Mitchell wrote:
> Hi all,
> 
> As in the subject - has anyone managed to get a FreeBSD machine to connect
> to a Cisco VPN server, using IPSec and 2-factor authentication (password +
> SecurID card)?  My employer has been acquired by another company, and this
> will soon be the only remote-access method available.  Linux client
> software exists, but given that it relies on a kernel module I'm not
> holding out much hope of it working.  The security/vpnc port looks like it
> might be useful.  No idea if racoon + FreeBSD native IPSec can be persuaded
> to do the SecurID authentication.
> 
> I would try all these things myself, except I don't have any account
> details for the server yet.  I really don't want to keep a Linux or Windows
> machine around just to connect to the office...
> 
> Many thanks in advance,
> 
> 	Scott
> 

I have not personally used this, however I have had reports of users 
connecting to a Cisco VPN 3000 box that I administered at one point with 
the following client:

http://www.unix-ag.uni-kl.de/~massar/vpnc/


-Ash