Peter, I would recommend using openvpn for end-point encryption and a mixture or all of djb's tcpserver/softlimit/cdb for connection handling, process control and extra host authentication respectively. hope it helps