Managed ADSL/WiFi/VPN Branch Office Router

mcraenz

683 posts

Ultimate Geek

Topic # 111834 16-Nov-2012 09:38
Hey, anyone had any experience or know of an ADSL/WiFi router which can be installed at a branch office and can: Be centrally managed through a head office console. Provide local direct internet access over wired and WiFi SSID Provide VPN connection back to head office on different SSID and different wired interface. Cheers, mcraenz Visit My Blog!

2370 posts

Uber Geek

Trusted

Subscriber

Reply # 718157 16-Nov-2012 10:49
PFsense vote here. I use it for about 8 branch sites including the main datacentre routing 30-40mbps of VPN traffic constantly. Also look at Mikrotik from what I have read.

683 posts

Ultimate Geek

Reply # 718169 16-Nov-2012 11:10
Thanks. Yeah pfsense is a great system but I've got ~200 sites so need something that can be centrally managed and configured with polices. And would really like it in single unit. Visit My Blog!

2370 posts

Uber Geek

Trusted

Subscriber

Reply # 718174 16-Nov-2012 11:13
I can't speak for anything of that size sorry. I support the idea of not using WAN connections tunneling all internet activity through a single point though. You may want to take a look at Ubiquiti's routers. They have good reviews and knowing Ubiquiti they probably have a central management system like arivision, unifi etc. do. How many users and what kind of traffic levels at each site? I'm presuming just DSL?

16711 posts

Uber Geek

Moderator

Trusted

Biddle Corp

Subscriber

Reply # 718178 16-Nov-2012 11:25
The best option is to detach the modem from the router and go for two different pieces of hardware. *Need help configuring your Linksys ATA or IP Phones for New Zealand? Check my blog post

978 posts

Ultimate Geek

Subscriber

Reply # 718248 16-Nov-2012 12:55
How much are you willing to spend? I guess the go to would be Cisco 800 series. Not really sure what can be done for central management but probably just use SNMP. I think it is more specifically the 880 series that would suit as it has built-in wifi and the WAN can be either VDSL or SHDSL or Ethernet. Would still be more tempted to go for a separate modem with a router as you can get much much cheaper devices with the same, if not more, features.

43 posts

Geek

Reply # 718312 16-Nov-2012 14:28
We use Watchguard XTM firewalls for customers that require central management of multiple devices, it works quite well. We've got about 100 running as centrally managed, but it scales well over that.

179 posts

Master Geek

Subscriber

Reply # 718589 17-Nov-2012 07:05
What you describe is exactly what the Cisco ISR series are designed for. 800 Series are your baby branch router (up to 25Mbit) 1900 Series are a little bigger (up to 100Mbit) 2900 goes to (200-500Mbit) 3900 goes to Gig+ The 880 series upwards all have the same features so you just scale based on branch size. All models from 880 up can do wireless with lots of SSIDs, VPNs of varying kinds, guest networks etc. If you have 200 sites, read up on Cisco DMVPN - it would make this easy. Not to mention all those Cisco's can have support contracts attached ranging from 8x5xNBD to 24x7x2 for hardware replacement and support/updates. Which is important if you want to manage 200 sites without going crazy. The 1900 and up can also house switch modules so you can get to a single box as you say above. Management can be done either individually as needed (what I'd suggest) or there are tools for managing them as a whole network. PM me if you want further help - this is what I spend most of my day doing.

683 posts

Ultimate Geek

Reply # 724299 28-Nov-2012 16:58
Sorry for the late reply. Thanks very much for the replies and advice guys. Visit My Blog!