Hi
Could someone let me know the best way to route our traffic from remote hotspot sites to our main colo tele house for logging/proxy/content filtering.
Currently we have an X86 ROS box running on a VM ESXI which acts as core router.
Each remote site has a PPTP tunnel (Mikrotik RB450G or better) to the core router (192.168.1.1 being the core router), 192.168.x.1 being the sites.
I now want to send all port 80 traffic from each site through the proxy/content fllter which is set up hanging off one of the X86 ethernet ports.
At present, the remote sites simply run a NAT rule and web proxy to route all traffic to the parent tele house based proxy using its external internet facing IP - works well. However, it does mean running the proxy internet and I'm getting lots of people using it that shouldn't.
Rather than setting up lots of firewall rules to allow each site access, it seems I could simply send everything down a tunnel onto the core router , and from there to the proxy , keeping the proxy on the internal network so to speak.
Would the existing PPTP link be Ok to use, of are there better methods (such as EoIP ) ?