Not that this is a hard question . . . We've finally gotten fed up with DSL and are moving to fractional T1 lines. We have three offices in three cities and two states. What we have now is a DSL WAN-on-the-cheap; each office sees the other through ATMP tunnels handled by Netopia routers (R7100, R7200, and R9100). We also have a number of users who occasionally VPN into the routers, usually on "high-speed" connections. We have three NT 4.0 domains, and about 40 employees all told. Future expansion might see that number double in two years.
So, here's what I need:
1. Ability to set up WAN-type VPN connections between all three offices, allowing users access to resources in each of the other offices.
2. Ability to VPN in, preferably using MS PPTP on Windows 98 clients. I'd like to stay away from 3rd-party VPN clients, just for simplicity and familiarity.
3. Good security, as the fractional T1s will of course have public IP addresses.
Currently, we're generally happy with the Netopias. One of my questions is whether or not we need to step up our security a notch to something like the SonicWall or WatchGuard products. Please keep in mind that any solution has to be implemented in three offices.
So, what's your best recommendation for securing small office Internet connections? Thanks in advance.