I have to agree with BudMan here. Setting up an IpCop at the shop with OpenVPN sounds like the best choice since you are already an IpCop running at home.
You are also looking at the cost factor and have some spare hardware. This would keep the cost to a minimum and you would be running a system that you are already familiar with.
With a few mods you can transform the IpCop to a very robust solution.User Mods:
IDS Control (Allows you to control what protocols are watched)
Guardian (Adds IPS functionality and takes action based on what you allow in the IDS)
Midnight Commander (Because I hate VI) Add-on Server Mods:
Logsend (Sends logs to specified e-mail address)
Net-Traffic (Shows traffic usage for all interfaces)
Cop+ (DansGuardian allows the use of black/grey/white lists to filter web traffic)
Anyway, I am sure that you may already be aware of those mods. Have fun getting everything up.
I am tracking this topic. Let us know how everything works out.
Edited by EcPercy, 10 February 2007 - 03:31.