Hi guys,
I'm wondering what is the simplest, and cheapest RouterBOARD option for doing IPSec VPN using BGP. My VPN requirements are:
- IKE using pre-shared keys
- IPSec SAs in tunnel mode
- AES 128 bit encryption function
- SHA-1 hash function
- Diffie-Hellman PFS in group 2 mode
- Do packet fragementation prior to encryption
- BGP support
- Route based VPN (bind tunnels to logical interfaces)
- IPSec dead peer detection
Keen to buy some devices and play around with them if I can get hardware supporting all of the above.
Cheers,
Adrian.