not having any practive with cisco ASA but searching the web have seen several post about openbsd-ipsec + cisco asa and from another mails i have seen it seems pretty easy as long as u have the same crypto transforms in the sides
> Date: Fri, 1 Jun 2012 15:48:37 -0400 > From: s.casw...@protocol6.com > To: misc@openbsd.org > Subject: IPSEC newbie looking to replace vpnc with Openbsd built-in IPSEC vpn > > Hi all, > > I am currently using vpnc to connect to a client site (which has an CISCO ASA firewall/vpn endpoint) > This setup works, but everytime I use vpnc from my server it breaks other networking, especially the openvpn tunnels I maintain to other sites. > > I'd prefer to use the built-in IPSEC software in OpenBSD to establish the tunnel instead (and terminate it locally on a tun or tap interface) > > All my attempts so far have failed and I must admit I'm an IPSEC newbie, at least with the OpenBSD tools. > > My vpc.conf file is very simple: > > ------- > IPSec gateway ww.xx.yy.zz > IPSec ID somevpn > IPSec secret somesecretString > IKE Authmode psk > ------- > > Is there an equivalent config for ipsecctl (and/or isakmpd) that is known to work with remote ASA firewalls? > > Any help or suggestions would be greatly appreciated. > > Thanks in advance. > > :-) > > Sarah
