Hi,
my employer, a web agency with 10 devs and two admins, is moving on to put our customer projects and infra (Webserver running on dedicated public server + stuff like GitLab, icinga2 Graylog) into a OpenStack-Plattform from our Hoster. Therefore, i'm looking out for an Router/Security Gateway/VPN-Box for our office to connect to the VPC-Network via IPSec and the rest of the Internet.
Our office has a 500/500 business fiber with PPPoE, so a SFP-Port is a must.
Our current router, a small APU-Board without AES-NI running pfSense got totally blown while testing a IPSec-Tunnel with iperf gave me about 25 MBit throughput.
The Router should have enough horsepower, to handle at least 200 MBit via IPSec, and should provide similar services as pfSense for our Office-LAN. Stuff like IDS would be great but depends on licencing costs.
Im fine to learn a CLI-Based OS as i have rusted CCNA experience maybe bring it into our SaltStack config mgmt would be fun, but core functions should be manageable for non-admins as fallback via GUI.
My eyes are looking on the Juniper SRX200/220. Whats your experience with this Box or do you know good alternatives?
No comments:
Post a Comment