On Mon, Jul 27, 2009 at 1:38 PM, Thomas Bächler<thomas@xxxxxxxxxxxxx> wrote: > Ray Kohler schrieb: >> >> I usually recommend strongSwan (which is in AUR) for interoperability >> with Cisco concentrators. It works quite well, but it's not simple to >> set up initially. I still believe it to be the best technical >> solution, but it would be beyond me to explain how to do it, via >> email, and for an unfamiliar situation. > > I was under the impression the only thing that worked with Cisco's > proprietary xauth protocol was vpnc. (Apart from authentication, it is only > IPSEC IIRC) strongSwan supports XAUTH, though I've never tested that feature. It also supports certificate-based authentication, which vpnc doesn't, and which I actually do use.
