From owner-freebsd-questions@FreeBSD.ORG  Mon Oct 23 12:15:05 2006
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
X-Original-To: freebsd-questions@freebsd.org
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id AFF6416A40F
	for <freebsd-questions@freebsd.org>;
	Mon, 23 Oct 2006 12:15:05 +0000 (UTC)
	(envelope-from joao.barros@gmail.com)
Received: from hu-out-0506.google.com (hu-out-0506.google.com [72.14.214.237])
	by mx1.FreeBSD.org (Postfix) with ESMTP id 7BE7243D81
	for <freebsd-questions@freebsd.org>;
	Mon, 23 Oct 2006 12:14:26 +0000 (GMT)
	(envelope-from joao.barros@gmail.com)
Received: by hu-out-0506.google.com with SMTP id 34so1189193hui
	for <freebsd-questions@freebsd.org>;
	Mon, 23 Oct 2006 05:14:25 -0700 (PDT)
DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=beta; d=gmail.com;
	h=received:message-id:date:from:to:subject:cc:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references;
	b=qIfeZ01VymIdjL5IDgT+wvD+5GHMYtjOcWmdpDMFel6JvS8s8TxFj8Sotv1m6tcqOa0IOdQ71ARjSQjGv8yor6Oc4Q1WXBvQKg/xRXhRSGhcbMQxUbNVpzfxJpHujB84Jn6I/w1Oxyi4j7QeBVQ3KXUoSBmPE/RXAhKKNmSvPaY=
Received: by 10.78.181.13 with SMTP id d13mr7095753huf;
	Mon, 23 Oct 2006 03:24:20 -0700 (PDT)
Received: by 10.78.173.8 with HTTP; Mon, 23 Oct 2006 03:24:20 -0700 (PDT)
Message-ID: <70e8236f0610230324m7dbdf28fr4ea95700850b1307@mail.gmail.com>
Date: Mon, 23 Oct 2006 11:24:20 +0100
From: "Joao Barros" <joao.barros@gmail.com>
To: "Alexandre Vieira" <nullpt@gmail.com>
In-Reply-To: <755cb9fc0610230227t53c5b718i10392d32d31b45e7@mail.gmail.com>
MIME-Version: 1.0
Content-Type: text/plain; charset=ISO-8859-1; format=flowed
Content-Transfer-Encoding: 7bit
Content-Disposition: inline
References: <755cb9fc0610230158p7327fcm6b7d64a5376d082a@mail.gmail.com>
	<20061023090653.GA3564@rebelion.Sisis.de>
	<755cb9fc0610230227t53c5b718i10392d32d31b45e7@mail.gmail.com>
Cc: Matthias Apitz <m.apitz@oclcpica.org>, freebsd-questions@freebsd.org
Subject: Re: Running Cisco Systems VPN Client with FreeBSD
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Mon, 23 Oct 2006 12:15:05 -0000

On 10/23/06, Alexandre Vieira <nullpt@gmail.com> wrote:
> I don't have, yet, details about the devices that will be used in the client
> side but I know that we'll use RSA randomized rotative SecureID's and we'll
> use IPSEC.
>
> I'm not aware if this kind of auth mecanism has anything to do with the
> client itself.

That authentication mechanism is configured on the vpn concentrator
but performed with the help from an additional box running an RSA
specific app.
Most likely the VPN Concentrator and the PIX will disappear and the
ASAs will be a multi purpose device so keep those in mind if it's a
new buy.

Keep us informed on your progress :)


-- 
Joao Barros