From owner-freebsd-security Thu Mar 9 17:15:17 2000 Delivered-To: freebsd-security@freebsd.org Received: from povray.org (netplex.aussie.org [204.213.191.226]) by hub.freebsd.org (Postfix) with ESMTP id 6BAA337B86B for ; Thu, 9 Mar 2000 17:15:13 -0800 (PST) (envelope-from mlnn4@oaks.com.au) Received: from frankenputer (dubsat-ip23 [210.8.162.23]) by povray.org (8.9.3/8.9.3) with SMTP id UAA24924 for ; Thu, 9 Mar 2000 20:15:01 -0500 (EST) (envelope-from mlnn4@oaks.com.au) Message-ID: <000f01bf8a2e$104306a0$cc0010ac@melbbureau.central.dubsat.com.au> From: "Chris" To: Subject: pipsecd and Cisco PIX Date: Fri, 10 Mar 2000 12:13:53 +1100 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 5.00.2919.6700 X-MimeOLE: Produced By Microsoft MimeOLE V5.00.2919.6700 Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org I'm looking for advice (and perhaps even a config?) for getting pipsecd and a Cisco PIX to talk together using manual IPSEC. I am not even sure this is possible, though it probably is. A interoperability chart I saw indicated pipsecd can talk to Cisco IOS using manual configuration, but they didn't mention the Pix directly. Currently we have routers in the field that tunnel back to our Pix using 56-bit DES and IKE. Several of the admins of the system (incl me of course ;) use FreeBSD at home with a perm net link and want to be able to have a permanent tunnel up and running for when the pager goes off. So, firstly, has anyone done this ? Just knowing it is possible would make things a lot easier (as I'd be willing to spend more time on attempting to get it to go). But if someone can contribute a working config example, that'd be awesome ;) regards, -- Chris To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message