@Hubtech said:

@scottalanmiller said:

@Hubtech said:

this is for a $300 device, and a company that only has 7 tunnels (and won't hit 20 for a couple years).

Have you looked at the Ubiquiti EdgeRouter Lite instead? Only $99 and I would expect it to handle way more than 20 IPsec tunnels.

I mentioned the edge router 8 up there. I've never messed with one so i was looking for hands on from somebody.

I have 10 (may be one more I lost track) of the Ubiquiti EdgeMax LITE (ERL) in production. I only use OpenVPN tunnels at the moment because they are easier to work with and I am not approaching the bandwidth limit of OpenVPN on the hardware (~10-14mbps encrypted). Not a single site I have an ERL installed at has a pipe that can push out more then 10mbps, so I will never have a problem with this for now. I do have one IPSEC tunnel up to a home user that I have not sent a new router yet and it has no issues either.

The ERL I have at my home office has a tunnel to every single one of the remote ERL at my clients and it never blinks.

Using IPSEC you can get throughput in the 100+mbps range with the ERL. The difference between IPSEC and OpenVPN is that the IPSEC encryption can be offloaded to hardware while the OpenVPN encryption all has to be done on the processor.