Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Looking for hardware for small network with site to site VPN

    Scheduled Pinned Locked Moved Hardware
    4 Posts 2 Posters 1.4k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • M
      mageta
      last edited by

      Good afternoon,

      I work for a company that provides video broadcasting solutions, as well as network management to our customers. We do a lot of work with multicast traffic, public television networks etc… We're looking for a firewall solution to offer to our customers if needed. One of our main requirements is the ability to gracefully handle video over a site to site VPN. The required throughput is going to depend on the customer network, ISP etc... But we want to be able to get up to say... 100 mbps across that tunnel if need be.

      The private LAN's are going to be made up of encoders / decoders, not large networks by any means. I showed my boss the SG-2440, and he wondered if we could get away with a 2220 instead. We don't need the extra ports, but I'm wondering about RAM and processing power. If we're going to be needing to push video through site to site VPN without packet loss or issues, what kind of hardware are we looking at?

      Another idea is that we would do the site to site tunnels through dedicated hardware instead of using PFsense, not sure which is going to be the better solution. Apologies if I haven't given enough information. As of right now we're just forming this idea, if there are any questions that need answering, to provide a better answer, I can certainly run them by my boss and see what he says.

      1 Reply Last reply Reply Quote 0
      • E
        edwardwong
        last edited by

        The CPU of 2220 has AES-NI, if your encryption is going to be this algorithm, 100Mbps VPN bandwidth is definitely not a problem.

        1 Reply Last reply Reply Quote 0
        • M
          mageta
          last edited by

          @edwardwong:

          The CPU of 2220 has AES-NI, if your encryption is going to be this algorithm, 100Mbps VPN bandwidth is definitely not a problem.

          I don't think we'll be limited to any particular algorithm. Encryption really isn't the main concern here, the reason for tunneling is so that we can circumvent a lack of multicast support on the existing infrastructure. I'm not sure what options PFsense has for this.

          1 Reply Last reply Reply Quote 0
          • E
            edwardwong
            last edited by

            You can take a look to APU2C4 platform, it should work for you.

            1 Reply Last reply Reply Quote 0
            • First post
              Last post
            Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.