Hello fellow engineers,I’m currently dealing with challenges in our existing VPN setup, which uses a SONICWALL device to connect 30 branch offices and 10 partner sites. While the SonicWall has generally been reliable, we’re experiencing issues with the Control Plane reaching 100% utilization. This overload causes our monitoring sensors to go offline, resulting in the loss of critical data.Our team is considering whether to upgrade the firewall specifications or switch to a dedicated VPN device. Given this context, we’re exploring the most effective solution:Should we upgrade our current firewall?Would it be better to implement a dedicated VPN router?Is setting up a separate VPN server a viable option?I would appreciate any insights or recommendations based on your experiences and expertise.Thank you!
You may want to consider to switch to a different solution:
- Mikrotik CCR2xxx for the hubs
- Mikrotik RB5009 for branches
- S2S VPNs using WireGuard
-C2S VPNS using either WireGuard or OpenVPN
While the SonicWall has generally been reliable, we’re experiencing issues with the Control Plane reaching 100% utilization. This overload causes our monitoring sensors to go offline, resulting in the loss of critical data.
That means it’s not reliable.
Whether you should replace it entirely or get a dedicated VPN headend is a financial question. Look at your budget and whatever makes more sense is what you should do.
I would recommend throwing Sonicwall out entirely and getting a better product that fits your requirements. 40 VPN tunnels, in addition to everything else a firewall does, should not be a problem for a decently sized firewall.
Yes miss type my word, it was reliable 4 years ago but now we keep adding more tunnels so that’s why.
By the way we are looking for another approach but can’t decide yet whether we should go with Firewall or Router as a VPN or a Sever which we use VPN OS.