Amithapr, we had a discussion in your prior thread about how 5.3 was unsupported. And whatever collection of parts from 4.1, 4.2, 5.3, or other releases you are running in your production gateway at the moment as "5.3", none of us are able to support you and this system via Q&A in a web forum.
The OpenBSD Project produces two releases every year. They only support the most recent release, and a single previous release. At this time, that is 6.0 and 5.9. The website,
www.openbsd.org, has an extremely helpful document set called the FAQ. It is updated twice per year also, and only addresses the most recent release. The 5.9 release is supported for break/fix, but the FAQ documentation has already moved on.
You have 4 choices, as I perceive your situation.
- Continue to live with your Frankensystem as it is, without understanding how to manage or maintain it.
Since it is a collection of various parts, only the person who assembled the system knows what they are. As described in your prior thread, this is not a secure system. And as described in this thread, you would not know if you have previously had, or still have, any security problems, due to how it is configured.
- Learn to install, operate, manage, and maintain an up to date OpenBSD system.
We discussed this in your prior thread. If you install and operate the most recent release, suddenly the FAQ will be useful to you.
- Hire a consultancy to provide support.
www.openbsd.org/support.html lists companies and consultants who may be willing and able to maintain and manage your OpenBSD systems on your behalf.
- Replace your OpenBSD gateway with something else.
Use whatever IPSec gateway is being used at the other locations, or choose equipment or operating systems you already know and understand.
I recommend 2, 3, or 4, rather than option 1. And yes, even 4 is a viable solution. Anything that can be supported and maintained will be better than what you have right now, which is clearly not being maintained, and certainly is not supportable via this web forum.