How to configure ShrewSoft VPN to connect to Cisco VPN Server?

Question

What are the steps to connect to a Cisco VPN server using the ShrewSoft VPN Client?

It's important to note that there are different kinds of Cisco VPN connections:

I have the detailed answer for 1., pre-shared key. i will be answering that myself.

I need a detailed answer for using ShrewSoft VPN as an alternative to Cisco AnyConnect.

For completeness the certificate version would be good.

Since the ShrewSoft VPN client is an IPSec client, you aren't going to be able to use it for SSL VPNs (AnyConnect or otherwise). — fencepost, Jan 12 '12 at 23:25
I have tried the answer by Ian Boyd and it has worked fine for me so far. Thanks, Ian. — Armen Michaeli, Aug 10 '15 at 11:56

score 61 · Answer 1 · answered Jul 20 '11 at 20:23

61

1. Cisco VPN with pre-shared key

Assume you have been given connection information for a Cisco VPN server:

Host: 64.34.199.12

Group ID: SUPERVENDOR
Password: *318#($@

User ID: ian@superuser.com
Password: ianvendor1234

These are the steps to use ShrewSoft VPN to connect to the Cisco VPN server, rather than the Cisco client:

Create a new connection, and under Host name or IP Address enter the Host address (64.34.199.12):
On the Authentication tab, select Authentication Method of Mutual PSK + XAuth:
On the Authentication -> Local Authentication tab select Identification Type of Key Identifier:
Still on the Authentication -> Local Authentication tab, enter Key ID String of SUPERVENDOR:
On the Authentication -> Credentials tab, enter your Pre Shared Key of *318#($@:
Save the newly created connection, and click Connect
When prompted for a username and password, enter your supplied User ID and Password, and click Connect:

answered Jul 20 '11 at 20:23

Ian Boyd

What you mean by group id is it group name? – alsadk Jun 05 '13 at 14:49
4

@alsadk Sure, why not. i'm not the one who decides Cisco's terminology; i'm just the one that wants them dead. – Ian Boyd Jun 05 '13 at 14:57
thanks for answer. I have a problem where the VPN connection is brought up, it looks like I can send data but nothing being routed back. anything that needs to be done windows (firewall) wise? (windows 8.1 x64) thanks- sam – sambomartin May 19 '14 at 15:40
Just a note for others -- in my company's setup there is an RSA soft-token. Upon initial setup the soft token's pin needed to be reset. The cisco version brought up the reset, the shrewsoft vpn failed with a non descript message. Once I reset the pin from default, shrewsoft works fine. – EBarr May 05 '15 at 00:12
1

We upgraded a few devices to Win10 and noticed that we couldn't use the old school cisco VPN anymore. I can verify that this method works 100%. Thanks a lot for providing this info. – lobi Sep 17 '15 at 16:09