I’ve been working on some complex VPN configurations by using GNS3 and PEMU which is built in. It’s nice to be able to throw together a bunch of devices and get them talking without much fuss. However, I discovered today that PEMU is really designed to emulate a PIX 525 by default, although supposedly it can also emulate a PIX 506e.
In Cisco’s infinite wisdow it decided that no one would ever want to use something above a 506e as an ezvpn client. So, they removed the client code and only put in the server code.
Per Cisco: The PIX 515/515E, PIX 525, and PIX 535 act as Easy VPN Servers only because the capacity of these devices makes them appropriate VPN headends for higher traffic environments.
Umm…gee, thanks for making that decision for me. And Cisco stopped at PIXOS 6.3 for the 506e. Yeah.
Do they try to make it harder?