All of our client locations are on our WAN, and are all attached via Sonicwall secure VPN tunnels. Therefore if I were to ping a 192.168.1.x address, the packet would route down the tunnel to Sierra-Tango. If I were to ping a 192.168.2.x address the packet would route to Delta-Mike, etc. Additionally if I was out of the office, but needed to access a location, I could take my laptop from anywhere and pull up the GVPN Client and attach to any location from outside the office.
It's worked well for 15 years, but ever since Sonicwall was bought by Dell it's gone to Hell. In the past if you were a real customer with multiple locations, you would open the ticket with Peggy over in India, get a ticket number, then say, "I've got another call, I'll call you back." Then hang up, call your Channel Account Manager at Sonicwall, give them the ticket number and they'd get you escalated to a real tech at Level III support in Arizona.
As a result we're looking to make a transition. It will probably require changing every location across the WAN which is why we have avoided it, but it's time to look for something better.
If you have suggestions for a new security appliance line I'd like to hear them.
We need the ability to have the devices attach by permanent VPN tunnels, and a HUGE issue for most clients is the ability to block web domains by name, as well as be able to block every web location by default and then only open the ones that are allowed. Gateway Antivirus, Content Filtering, & Intrusion Prevention subscriptions are also desired.
Thanks.