Cisco PIX VPN with FC2

Ted Kaczmarek tedkaz at optonline.net
Thu Sep 16 00:17:28 UTC 2004


On Wed, 2004-09-15 at 16:44, Mark Haney wrote:
> I know I've asked this question a thousand times, but does anyone have
> any hints, tips,tricks, anything to help me get a VPN connection from
> FC2 to a Cisco PIX 515E.  The PIX is setup to use a username/pwd
> combination to authenticate but I find no HOWTO's on how to set that
> up in FC 2 with ipsec-tools or anything.  Please help someone, I hate
> booting to XP just for that.
> 

I know Openswam on FC1 and RH9 works fine to Pix, make sure xauth is off
on the pix side. 

Snippet from Openswan List regarding FC2

We got to the bottom of this - it was the shared secret it didn't like!
Something's changed in the kernel (as thats the only difference) which
now doesn't like certain characters being used in the secret....which is
odd.

Basically, the shared secret we were using was "r%w£a&704" - this works
fine on a 2.4 kernel, but produces a "PAYLOAD_MALFORMED" error when run
on a 2.6 kernel! Versions of Openswan and ipsec-tools are identical. We
changed the secret to an alphanumeric string and it works fine on the
2.6 box now.

Ted





More information about the fedora-list mailing list