<!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
<html>
<head>
</head>
<body bgcolor="#ffffff" text="#000000">
Hello, everyone! I'd like to implement IPSec for roadwarriors using
x509 certificates. I already was able to achieve this with racoon but
due to some very big bugs in racoon we've been forced to move away from
it. The configuration we had in place was compatible with Cisco VPN
clients using XAUTH against PAM (and thus LDAP or whatever backend auth
we chose).<br>
<br>
My questions for OpenSWAN are these:<br>
<ul>
<li>What's the PAM service name used when performing authentication?</li>
<li>How do I tell OpenSWAN in the configurations that it should
authenticate via PAM for IPSec+XAUTH users?</li>
<li>Is it possible to configure OpenSWAN as a server for the Cisco
VPN client? (yeah - I know Cisco does some gnarly things but still ...
someone likely has tried it before and perhaps even succeeded)</li>
<ul>
<li>If it is indeed possible, can anyone offer up sample
configs/guides/reference material/etc?</li>
</ul>
</ul>
Thanks!<br>
<br>
<br>
<div class="moz-signature">-- <br>
<style type="text/css">
p { margin: 0; }
</style>
<div style="font-family: Arial; font-size: 10pt; color: rgb(0, 0, 0);">
<font size="1"> Diego Rivera<br>
Director / System Operations<br>
Roundbox Global : <span
style="font-style: italic; color: rgb(102, 102, 102);">enterprise :
technology : genius</span><br>
------------------------------------------------------------------------------------------------------------------<br>
Avenida 11 y Calle 7-9, Barrio Amón, San José, Costa Rica<br>
tel: +1 (404) 567-5000 ext. 2147 | cel: +(506) 8393-0772 | fax: +(506)
2258-3695<br>
email: <a href="mailto:diego.rivera@rbxglobal.com">diego.rivera@rbxglobal.com</a>
| <a href="http://www.rbxglobal.com">www.rbxglobal.com</a><br>
------------------------------------------------------------------------------------------------------------------<br>
</font> </div>
</div>
</body>
</html>