Hello I have two sites, connected via a point-to-point link wireless.
The real bandwidth is inferior to 10Mbps:
Since the wireless devices that forms the bridge only support WEP 64/128/256 I just planned to to a GRE+IPSEC (I have not been able to do straight ipsec tunnel) to connect the two links.
I got MTU of 1500 on all devices, I could establish a cleartext wireless bridge and then run a VPN on it to encrypt the traffic of the two networks.
FIREWALL with 3 legs (one is the WAN link, LAN link, remote-site lan link via wi-fi)
wireless device (bridge) Firewall/router lan
Since the WEP is insecure and quickly breakable, also it adds a lot of overhead to the wireless link, reducing bandwidth. I planned to do a DES/SHA vpn link running on the wireless link, also not to "destroy" the cpu of the router at the end of the links, or at maximum AES128 that is more cpu-friendly.
Since the 3 legged firewall I wrote before on the site A could be a C2651XM or a C2650+NM4E or C3620 etc at the moment they dont have any crypto offload accellerator (that offloads des and 3des)
The wireless link is used to share internet connection only., and rarely to transfer 650mb files from site a to site B.
What are your suggestions?