Hi all,
i’m a new user on this forum and i’m glad to be a part of It. I’m planning to configure a site to site VPN tunnel for a customer, who is a lawyer. He has two offices in different location. In these two offices i’ll setup one RB1100AHx4 for each and i’ll create a private network as normal (with firewall rules, NAT, ecc). After that, i’ll have to connect the two offices in order to communicate from remote PC to NAS and viceversa.
To achieve this, i thought to use VPN IPSec with IKEv2 protocol in tunnel mode, with AES-CBC and SHA2 (512). Is it a good option in terms of performance and security?
This customer, in both offices, has fiber optic connection and the bandwith is about 100/10 Mbps. In your opinion, what’s the best solution to adopt for a secure but also fast VPN tunnel? OVPN is using TCP on routerOS and hw encryption isn’t supported. So, what do you think about IPSec?
Many thanks in advance