[VPN] Need Advice on a start point..

[Andy Ciordia]

The years have rolled on and SSH for just developers is not cutting the 
mustard for the administrative side of the company.  At this time 
administration exists on a non-routeable, production on its own class c, 
and a broken installation of Sunscreen-1 running on an aged solaris 
machine for our firewall rules. We are completely linux on development 
these days, administration is like most places all windows (2000/xp).

We still own a few class C's and I've been toying with moving the office 
onto one of our secondaries.. that or NAT them.. I'm tired of 
non-routeable-non-nat, causes so many proxy headaches.

Recently we just aquired another company and through their technology I 
inherited a PIX 515R which is out of date and contract.

I need to get a VPN/IPsec rollout initiated and my head is swollen with 
all of the last 2-3 years of reviews but can't seem to find anything 
current.  We have about 15 users that will need access from outside and 
I'm vasilating between Cisco's line, Lucents Brick 80, Linksys/Netgear, 
insert provider here..

I want to replace our firewall, its old, relegated, un-upgradeable and 
must go.  We have existing Catalyst 5000/2500 in use, both at this time 
are out of contract and could use a fresh IOS push I'm sure.

Does anyone have any advice they can give?

Bring the 515R into production use through upgrades or go with a fresh 
rollout?

Or should I just start contacting vars and implementing demos?

Anyhow, for anyone who has followed this far or can give some ideas, it 
is so very much appreciated. :)

-a