My company is working on dropping our "MPLS" provider, and I use the"MPLS" loosely, and manage our own equipment and establish VPN connections to our data center using a USG Pro 4 at all 14 of our branches. We have on average 4-6 employees at each branch. They use thin clients to remote into a server in our DC to do all of their daily work. I have had a USG connected at two of our locations and at my home office for over a year. I was planning to install a USG at the data center and then use the built-in VPN connection between USGs to set up all of our branches. I thought this was a great idea until the Rep from our DC called and said that it is not secure enough and that we need a UTM. This just about sank my entire plan but I'm a bit skeptical about his answer. Is this guy right, that they won't work and cause a huge security risk to our company or does he not know what he is talking about. Also, if he does know what he is talking about is there an inexpensive way to mitigate that weakness and still use the USGs? For a bit more info, we would be sending out all internet traffic locally from the branch and all other traffic would go through the VPN Tunnel to the DC.
Thank you in advance,