Quick question regarding the implementation of IPSEC on the lower-end Routerboards.
I am trying to work out which is the better system in general out of the RB600 and RB4xxAH in terms of IPSEC performance.
Looking at the raw stats for the CPUs in these boards the '600 should come out on top, and the ports certainly seem much faster (1Gbps raw data rate according to Mikrotik).
However, tolstii's results seem to suggest that there isn't much difference. I find this surprising.
Additionally, his results are using 3DES. I was under the impression that AES on a software-processed VPN should be significantly faster than 3DES. Does anyone have any tested figures for the RB4xxAH with 3DES and AES, and the RB600 with 3DES and AES? This would be with ESP/SHA/pre-shared IKE VPNs terminating at a Juniper Netscreen 5000 (so the bottleneck will always be with the Routerboard).
Or do I just need to buy one of each in and test?