[similhom]

Hi,

I think that Simplified mode should be used only for CP-to-CP VPNs using VPN communities.
You must use Traditional mode to make it work with other vendors.
In your rulebase you need to have the same rules (src-dst-services) as you have as an access-list in the PIX (but Mirror!) then you put the Encrypt action.

As maverick said :

Use a Interoperable device to define the cisco router/PIX
Create network objects/groups for the networks behind the PIX [VPN Domain]
Make sure that your IKE Phase I and II encryption and hashing algorithms match exactly. Same thing for PFS, timeouts, and DH groups
For ease, use pre-shared keys instead of digital certificates {althought possible, and more secure}
Use a meshed topology for a point-to-point configuration

VPN domains control what can get encrypted (Crypto ACL's on the Cisco side). They should be MIRROR images of each other (source/destinations reversed).

Good luck!