Remember for a site to site (as site to site requires an endpoint on each end which is usually a router or firewall) the configuration must match on both sides except for peer ip information will be flipped.

For instance if your Phase 1 is:

3DES
SHA1
DH 2
8600

and Phase 2 is

3DES
SHA1
no PFS

Then it must be the set this way on both ends of the vpn on each device.

You’ll also need to ensure the ACL’s match (the rules to allow traffic to your internal network from the remote network on each side)

I hope this gives you some direction, I can not vouch for compatibility of each unit as I am a Cisco ASA/PIX user, tho I have configured VPN’s through Watchguard’s, Firebox’s, Checkpoint’s, and Netscreen’s. Ipsec VPN’s are pretty much universal everywhere if they are site to site. Dynamic Ipsec VPN’s will be a little different. You’ll need to determine which VPN your firewall/router support.