Looking for hardware for small network with site to site VPN
-
Good afternoon,
I work for a company that provides video broadcasting solutions, as well as network management to our customers. We do a lot of work with multicast traffic, public television networks etc… We're looking for a firewall solution to offer to our customers if needed. One of our main requirements is the ability to gracefully handle video over a site to site VPN. The required throughput is going to depend on the customer network, ISP etc... But we want to be able to get up to say... 100 mbps across that tunnel if need be.
The private LAN's are going to be made up of encoders / decoders, not large networks by any means. I showed my boss the SG-2440, and he wondered if we could get away with a 2220 instead. We don't need the extra ports, but I'm wondering about RAM and processing power. If we're going to be needing to push video through site to site VPN without packet loss or issues, what kind of hardware are we looking at?
Another idea is that we would do the site to site tunnels through dedicated hardware instead of using PFsense, not sure which is going to be the better solution. Apologies if I haven't given enough information. As of right now we're just forming this idea, if there are any questions that need answering, to provide a better answer, I can certainly run them by my boss and see what he says.
-
The CPU of 2220 has AES-NI, if your encryption is going to be this algorithm, 100Mbps VPN bandwidth is definitely not a problem.
-
The CPU of 2220 has AES-NI, if your encryption is going to be this algorithm, 100Mbps VPN bandwidth is definitely not a problem.
I don't think we'll be limited to any particular algorithm. Encryption really isn't the main concern here, the reason for tunneling is so that we can circumvent a lack of multicast support on the existing infrastructure. I'm not sure what options PFsense has for this.
-
You can take a look to APU2C4 platform, it should work for you.