From owner-freebsd-hackers Mon Jan 7 13:45:42 2002 Delivered-To: freebsd-hackers@freebsd.org Received: from snow.fingers.co.za (snow.fingers.co.za [196.7.148.5]) by hub.freebsd.org (Postfix) with ESMTP id B2ADA37B417; Mon, 7 Jan 2002 13:45:25 -0800 (PST) Received: by snow.fingers.co.za (Postfix, from userid 1000) id 8B94317425; Mon, 7 Jan 2002 23:45:22 +0200 (SAST) Received: from localhost (localhost [127.0.0.1]) by snow.fingers.co.za (Postfix) with ESMTP id 8812811713; Mon, 7 Jan 2002 23:45:22 +0200 (SAST) Date: Mon, 7 Jan 2002 23:45:22 +0200 (SAST) From: fingers To: Guy Middleton Cc: , Subject: Re: IPSEC with Cisco VPN 3000? In-Reply-To: <20020107162928.A29684@chaos.obstruction.com> Message-ID: <20020107234058.R54527-100000@snow.fingers.co.za> MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-hackers@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG Hi > Has anybody successfully set up IPSEC between a FreeBSD box (I am using > 4.3-STABLE) and a Cisco VPN 3000 concentrator? > > The Cisco wants a "group name" and "group password", and I > can't tell how this maps to the racoon implementation of IKE keys. They have a linux client available for download if you have CCO access (and access to download 3DES software from them). That might give you some answers. Not sure if you can connect as a vpngroup member without their client. http://www.cisco.com/warp/public/707/index.shtml#vpn3000 might be worth a read, with the index at http://www.cisco.com/warp/public/707/index.shtml. Regards --Rob To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-hackers" in the body of the message