Put cacert.pem onto your Bering box in the /etc/ipsec.d/cacerts directory (you will have to create this with mkdir). Put crl.pem into the /etc/ipsec.d/crls directory (make this one, too). Put x509cert.der into /etc. Get the info in ipsec.secrets into your /etc/ipsec.secrets file like so:
# echo ipsec.secrets >> /etc/ipsec.secrets