Hi!
I am just looking for a new VPN-setup, but I do not find any product that really fits, what I need:
- High Stability on VPN if there is one "working" ISP on every Site with failover.
- Dual-WAN on "both sides" of the VPN
- HQ: Static IPs
- Branch Office: Dynamic IPs
- Centralized/Remote Management of the firewall rules (scripted or via software)
- Flexibility in Configuration, Scripts if possible
What I have tested:
- Bintec (Current Setup). Working fine, but no centralized management, nasty firewall, great routing.
- Fortigate: VPN-Tunnel must always be assigned to a WAN-Interface. So, there must be configured at least 4 tunnels on every site. No scripting
- PFSense/OPNSense: No remote management, no scripting
- Mikrotik: Crazy hard to configure with dynamic IPs (L2TP+EoIP+IPSEC), great in everything else, no central management, but remote-manageable
Can you give me a hint on what you would use?
Thank you!
Stril
I am just looking for a new VPN-setup, but I do not find any product that really fits, what I need:
- High Stability on VPN if there is one "working" ISP on every Site with failover.
- Dual-WAN on "both sides" of the VPN
- HQ: Static IPs
- Branch Office: Dynamic IPs
- Centralized/Remote Management of the firewall rules (scripted or via software)
- Flexibility in Configuration, Scripts if possible
What I have tested:
- Bintec (Current Setup). Working fine, but no centralized management, nasty firewall, great routing.
- Fortigate: VPN-Tunnel must always be assigned to a WAN-Interface. So, there must be configured at least 4 tunnels on every site. No scripting
- PFSense/OPNSense: No remote management, no scripting
- Mikrotik: Crazy hard to configure with dynamic IPs (L2TP+EoIP+IPSEC), great in everything else, no central management, but remote-manageable
Can you give me a hint on what you would use?
Thank you!
Stril