You did not post your revised pf.conf.
Do you have rdr-to rule(s) to redirect the incoming UDP traffic with destination UDP ports 500 and 4500 to your workstation running the Cisco VPN client?
Are you passing traffic using protocols ESP and AH?
http://en.wikipedia.org/wiki/NAT_tra...rsal_and_IPsec