I have the following situation:
A NSM-Express managing a firewall-cluster of 2 SSG350M's (the cluster connected to the internet)
A SSG20 with ADSL2a-module connected to the internet.
I want to manage the SSG20 over a VPN-tunnel created by the VPN-manager and i don't want the NSM to be exposed to the internet (aka MIP-solution).
Whenever i try to manage a remote device, the remote device at a certain point tries to connect to the LAN-IP of the NSM. This is not possible because its a connection over the internet with only public-ip's.
I want the SSG20 to setup a VPN to the firewall-cluster (usable in NSM VPN-manager), and then try to connect to the NSM over the VPN-tunnel.
I would like to find out how the above is possible.