We have two offices: one using the Cisco PIX and the other GnatBox. After some experimentation we've found that if you use:
AH - hmac-md5 or ESP - des then you can get either to work but not both at the same time. Don't know why. The setup is complex enough on both sides that it is not sure that it won't work.
