From owner-freebsd-isp Mon Mar 10 4: 0:28 2003 Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 3A37D37B401 for ; Mon, 10 Mar 2003 04:00:26 -0800 (PST) Received: from mx1.dev.itouchnet.net (devco.net [196.15.188.2]) by mx1.FreeBSD.org (Postfix) with ESMTP id 4EC8443F85 for ; Mon, 10 Mar 2003 04:00:22 -0800 (PST) (envelope-from bvi@itouchlabs.com) Received: from nobody by mx1.dev.itouchnet.net with scanned_ok (Exim 3.35 #1) id 18sLyA-000Piu-00 for freebsd-isp@freebsd.org; Mon, 10 Mar 2003 14:01:26 +0200 Received: from devco.net ([196.15.188.2] helo=Beastie) by mx1.dev.itouchnet.net with esmtp (Exim 3.35 #1) id 18sLy9-000Pic-00; Mon, 10 Mar 2003 14:01:25 +0200 Message-ID: <018a01c2e6fc$187c1f90$4508a8c0@Beastie> From: "Barry Irwin" To: , References: <014001c2e6f7$73095fe0$4a64a8c0@jamieheckford> Subject: Re: Cisco PIX 501 (3DES) to FreeBSD VPN Gateway Date: Mon, 10 Mar 2003 13:56:33 +0200 Organization: iTouch Labs MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2800.1106 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2800.1106 X-Checked: This message has been scanned for any virusses and unauthorized attachments. X-iScan-ID: 98878-1047297686-03335@unconfigured version $Name: REL_2_0_4 $ Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org I have had success setting up IPSEC connections to Cisco PIX equipment from my Freebsd systems. Only hiccup I noticed, is that in some cases where the psk was >8 chars things broke. Other than that nothing out of the ordinary for either the setkey or racoon configs. Barry ----- Original Message ----- From: "Jamie Heckford" To: Sent: Monday, March 10, 2003 1:23 PM Subject: Cisco PIX 501 (3DES) to FreeBSD VPN Gateway > Hi All, > > I am wondering if it is possible to setup a Cisco PIX 501 (3DES) to talk > to a FreeBSD VPN Gateway. > > The VPN gateway currently runs MPD-Netgraph and Poptop to provide access > to all Win XX series clients. > > What I am wondering is it possible to setup IPSec / racoon combo on the > FreeBSD system so the PIX 501 can connect to it ok. > > The role of the PIX 501 at the remote end will be to send all non-local > traffic out to the internet and VPN destined routes over the VPN > connection. > > Has anyone had any experience with this? Any comments or suggestions? > Google did not seem to wield to many useful results. > > Any help greatly appreciated as usual :) > > Cheers, > > -- > Jamie Heckford > Network Manager > Trident Microsystems Ltd. > jamie@tridentmicrosystems.co.uk > > t: +44(0)1737-780790 > f: +44(0)1737-771908 > w: http://www.tridentmicrosystems.co.uk/ > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message > > > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message