我想在pix520上配置site-to-site的vpn，vpn的另外一端是用开源的freeswan，我按照文档中的配置好了后，在freeswan这边发起连接，结果是无法建立vpn的隧道。
配置情况如此：

pixfirewall# show ip
System IP Addresses:
ip address outside 10.1.10.168 255.255.255.0
ip address inside 10.1.1.252 255.255.255.0
Current IP Addresses:
ip address outside 10.1.10.168 255.255.255.0
ip address inside 10.1.1.252 255.255.255.0

pixfirewall# isakmp enable outside
pixfirewall# isakmp policy 9 authentication pre-share
pixfirewall# isakmp policy 9 encrypt des
pixfirewall# isakmp policy 9 group 5
pixfirewall# isakmp policy 9 hash md5
pixfirewall# crypto isakmp key 123456 address 10.1.10.161
pixfirewall# crypto ipsec transform-set strong esp-des esp-sha-hmac
pixfirewall# access-list 90 permit ip 10.1.1.0 255.255.255.0 192.168.10.0 255.255.255.0
pixfirewall# nat 0 access-list 90
pixfirewall# nat (inside) 1 0 0
pixfirewall# global (outside) 1 10.1.9.129-10.1.9.159
pixfirewall# global (outside) 1 10.1.9.160
pixfirewall# crypto map toSanJose 20 ipsec-isakmp
pixfirewall# crypto map toSanJose 20 match address 90
pixfirewall# crypto map toSanJose 20 set transform-set strong
pixfirewall# crypto map toSanJose 20 set peer 10.1.10.161
pixfirewall# crypto map toSanJose interface outside
pixfirewall# sysopt connection permit-ipsec

这可是原原本本按照cisco提供的文档进行配置的，但是在freeswan那边发起连接，根本是一点反映都没有，按理说freeswan应该也是符合ipsec的规范的，不可能是一点反映都没有，应该还是哪里的配置有缺漏，请高人指点阿。