Re: [opensuse] vpn Cisco PIX 506e

ok, thanks, I'm trying with kvpnc

I need to configure some parameters like:

Peer IP: 200.40.x.x
VPN Version/Brand: PIX 506E
module VPN: VPN-3DES

configuration fase 1:

autentication method: Pre-Share Key
encription: IKE-ISAKMP
enccrption algoritm: 3DES
Hashing--IKE algoritm: Md5
pre-shared keys: DH Group 2
Renegociar IKE SA: 86400 segs
Shared Secret: xxx
Intercambio Modo Inicial Modo Principal

configuration fase 2:

IPSEC: ESP
Algoritmo Encripción—IPSEC: 3DES
Algoritmo Hashing – IPSEC: MD5
Renegociar IPSEC SA: 28800 segundos
Perfect Forward Secrecy-IPSEC: No

I cant find where i have to set, Do you known ?

thanks!




2010/12/2 Matt Hayes <dominian@xxxxxxxxxxxxxxx>:
On 12/2/2010 8:29 AM, jp_listero wrote:
sorry ...

I' m looking for a cisco client vpn for opensuse, the is specification:
Cisco PIX 506e
ISAKMP - preshared key - DH grupo 2 - 3DES - MD5
IPSEC - ESP

Now I have a router linksys that support  PIX 506e, but I would like
to install into my opensuse that works like a router and firewall.

any ideas ?
thanks,

2010/11/30 Ken Schneider - openSUSE <suse-list3@xxxxxxxxxxxxx>:
On 11/30/2010 12:41 PM, jp_listero pecked at the keyboard and wrote:
estimados,

estoy buscado un cliente de cisco vpn para opensuse, la especificación:

Cisco PIX 506e
ISAKMP - preshared key - DH grupo 2 - 3DES - MD5
IPSEC - ESP

no he encontrado como hacerlo, por ahora me lo esta solucionando un
linksys prestado,
alguno tiene alguna idea ?

muchas gracias,
saludos

English Please.

--
Ken Schneider
SuSe since Version 5.2, June 1998

--
To unsubscribe, e-mail: opensuse+unsubscribe@xxxxxxxxxxxx
For additional commands, e-mail: opensuse+help@xxxxxxxxxxxx




You can use vpnc which is an opensource vpn client that works with
Cisco.  I use it on both my laptop and desktop at home and it works
great with our PIX here.  If you use KDE, you can install kvpnc which is
a front-end to vpnc to manage your vpn profiles.

-Matt
--
To unsubscribe, e-mail: opensuse+unsubscribe@xxxxxxxxxxxx
For additional commands, e-mail: opensuse+help@xxxxxxxxxxxx


--
To unsubscribe, e-mail: opensuse+unsubscribe@xxxxxxxxxxxx
For additional commands, e-mail: opensuse+help@xxxxxxxxxxxx

Relevant Pages

  • Re: VPN Assistance
    ... This will expose port 1723 on th Pix to only these ... Glad it's working - now try to convince the client that using the Cisco ... client is more secure than using PPTP. ... IPSec VPN ...
    (microsoft.public.windows.server.sbs)
  • Re: IPsec + NAT + mehrere Tunnelendpunkte
    ... >> Verbindung zu ihrem Firmennetz per VPN aufbauen können. ... Cisco verwendet zum Bleistift Port 2000 dafuer. ... >> weiteren IPsec Tunnel zu einem anderen Endpunkt aufbauen möchte. ... > Dieser USR^W3Com NAT-Router bei ihm, ...
    (de.comp.security.firewall)
  • RE: VPN Assistance
    ... Yes, with 2 NIC's, you are not going to be able to use the Cisco IPSec VPN ... Unless of course you can pull a NIC out and use the Pix on it's own ... The commands you need for the Pix to allow PPTP passthrough are: ...
    (microsoft.public.windows.server.sbs)
  • Re: Cisco 3015 concentrator VPN bruteforce? And proxy with easy header rewrite?
    ... .Below is some info about admin username/password configuration. ... brute-force user/password at this uncommon Cisco vpn concentrator. ... Gateway during IPSec negotiation/connection. ...
    (Pen-Test)
  • RE: Firewall Hardware Recommendations
    ... but Cisco makes for good medicine also. ... next time I setup a PIX I'll have to load it on up and give it a shot. ... WatchGuard has you pay for VPN lic's. ...
    (Security-Basics)