I have a few servers in a datacenter. I've never needed more than 1 IP and everything has been behind a Cisco ASA5505 so far. I have 64 IP addresses provided to me and I'd like to change the setup to take advantage of them. I would like to bring a handfull of web servers and vpn servers online. Each would need to be assigned a public routable ip address (from one f the 64 addresses) My question is, how do I protect all the servers that have public IP addresses. I would like to get away from the ASA5505 because it's limited to 10/100 interfaces and my uplink is 1GB (as well as all my nics). I cannot spend any more than 1k. I've looked into using PFsense, but I don't quite grasp how this needs to be setup (or if it can support more than one IP in bridge mode, or if you can control bandwidth with this approach). I would like to know some possible solutions and maybe some usage scenarios that are in use now, for similar setups.
Thanks for any insight you can provide. It's very much appreciated.