Looking for Netgate Advice

I have a client who currently has 3 sites - currently connected using generic devices running pfSense and IPsec Site-to-Site VPN. They are more than likely going to have another 2 sites (similar sizes to others) online within the next 12 months.

They also have a 3 home users who work remotely at all times - these are connected to the Primary site by OpenVPN.

I am looking to swap these devices out for Netgate devices, but am unsure as to which devices are best for each site. I am also looking at changing the IPsec to Wireguard for the Site-to-Site VPNs.

Here are the site details:

Primary Site: 1GB ISP Provision, the server is located here, along with Unifi switch & AP, and all backups run to teh cloud from here. There are 4 PCs, and about 6 monile devices (laptops/phones)

Remote Site 1: 500MB ISP Provision, 5 PCs connected to application & file share on server in Primary Site.

Remote Site 2: 1GB ISP Provision, 3 PCs connected to application & file share on server in Primary Site.

My questions are:

  1. Is the Netgate 4100 Base capable for supporting up to 4 IPsec/Wireguard VPNs?
  2. And would the Netgate 2100 Base be suitable for the Remote Sites?

Thanks

I would jump right to the 6100 as these devices are more powerful.

I would still use IPSec for the site to site vpn