Fortigate Starting at 60, but see exceptions here .
The above devices have a separate processor package, so even an overloaded CPU (antivirus, Url Filtering) does not drop the main functions. I don't know how Cisco's prices are - but for Fortinet's hardware subscription/guarantee they are democratic.
If the price is not in the budget - spotifi offers a suitable option.
Dmitry Shitskov - after I learned Zen by setting up ASA - I do not recommend it to anyone.
pfsense, Fortigate, CheckPoint - at least logical in settings. At ASA the logic very interesting..... I and did not comprehend it.

Encryption, generally speaking, is a rather resource-intensive procedure.
Small loads will be pulled by a smart-configurable Mikrotik-type router.
But his processor rots under heavy loads.
Dedicated high performance encryption solutions are very expensive.
Some inexpensive compact computer with two network cards and with the pfSense operating system is the best option out of the box. This is such a FreeBSD distribution, specialized to work as a gateway, has web management, is controlled over the network, it does not need a monitor (well, except that it will be easier with a monitor during the initial installation).

IPSec on two pfsense

So far I have only found Fortinet equipment, they say it copes ...
But its main niche is a firewall

can ask provo to make your L2VPN in their internal network (gray) non-routable to the world?

Mirotik Cloud Core Router if the budget allows. It will be clearly cheaper than two servers, the CCR series is noticeably more stable (the main thing is not to update the firmware immediately after the release, otherwise they have it).

If you need good and honest encryption without glitches in your work, you can fork out for CheckPoint, they have ready-made pieces of iron or virtual machines, whichever suits you best. You can look in the direction of the 2200 model. And if it's not a secret, what kind of provider is it that gives you a gigabin VPN channel?