WISP embedded security

We operate a small but growing WISP (802.11b AP) in South America. We discovered that WPA is not a suitable security aplication for us and that we rather use PPPoE/L2TP/VPN solution. However existing boxes such as SonicWall are either too expensive or do not have the features we need. So we decided we may want to develop our own embedded solution, based on the Gumstix unit or similar (open to suggestions) where these units are located at the AP and a managemente systems polls them and updates their users tables and such. The aplication now required is a PPPoE/L2TP/VPN enabled Gumstix (as a server) for something in the order of 300 concurrent sessions. We know it is possible as the components (VPN and PPPoE servers, free of licensing) already work on the Gumstix platfor. An important part of the job will be to test and certify the concurrent number of sessions possible. ## Deliverables 1) Complete and fully-functional working program(s) in executable form as well as complete source code of all work done. 2) Deliverables must be in ready-to-run condition, as follows : a) Deliverables must be installed by the Seller in a ready-to-run condition in the Buyer's supplied Gumstix unit. Specs to be mutually defined. b) A software installation package that will install the software in ready-to-run condition on the platform(s) specified in this bid request, Gumstix. 3) All deliverables will be considered "work made for hire" under U.S. Copyright law. Buyer will receive exclusive and complete copyrights to all work purchased. (No GPL, GNU, 3rd party components, etc. unless all copyright ramifications are explained AND AGREED TO by the buyer on the site per the coder's Seller Legal Agreement). ## Platform See Gumstix web site please. We are open to other suggestions regarding HW and OS. When I asked on the support wiki of Gumstix this is what I got: It's not clear if those / mean "or" or "and". There are lots of VPN solutions which already run on the gumstix, including at least openvpn, vtund, and ipsec. PPPoE ought to work if you hook in the linux PPPoE kernel module. L2TP can probably easily be carried over your IPsec link once you've got that established with ipsec-utils C