Hi to all:
I’m trying to see the availability of the following infraestructure ( the worse scenario, i am trying to plan something scalable in horizontal and vertical ways ):
1000 local nets each one having a mkt acting as hotspot/router to a local ADSL router for each net. In each local net a few items ( 10 aprox ) to be queried by snmp ( 10-15 values for each item, queried from 2 to 5 min each one via a zabbix server ). I would like to have all this 1000 local nets in a big a.b.0.0/16 network and linked by a vpn in bridge mode to an “admin” network ( part of the a.b.0.0./16 ). The draw is some type of “star bridged vpns”. With this i wanna accomplish:
- Be able to see all items in all places like being in a local network from the central network ( where zabbix and other admin actions/servers will be placed ) using the bridge VPN as connector between networks.
- Be able to identify each item by ip ( no ip repetitions in different local lans )
- The traffic ( snmp, telnet/ssh, winbox, dude… ) between the items in the local lans and the admin network, secured.
- queues for granting an acceptable bandwith for administration/monitoring.
- Be able to easily add new networks
- Be able to easily add new vpn “servers” in the admin network to balance load if necessary
I am a big fan of openvpn but for what i read in this forums, ovpn in bridge mode is not supported actually ? If i can’t use bridged ovpn, can you kindly point me to info ( howtos, protocol specifications, examples… ) of any other vpn solution supported by mkt to accomplish with my ideal solution? ( ipsec? new solutions? )
TIA and best regards
D.