I have customer that is willing to provide VPN/SSL access to 50 remote users.The Mag2600 will be installed in the DATA-CENTER A.
Each user is located in a different office (or at home) and use desktops that run a specific application that needs access to a HOST located in the DATA-CENTER B (not the same data center where the Mag2600 is installed). There is a VPN GATEWAY at the DATA CENTER B (probably CISCO).
QUESTION: Is it possible to connect the Mag2600 (located at the DATA CENTER A) to the VPN Gateway located at the DATA-CENTER B using a site-to-site VPN? This way, the USER (located at some office or at home) would be able to get connected to the Mag2600 using a VPN/SSL and then access the HOST which is located at the DATA-CENTER B ?
The MAG does not do the site-to-site tunnels. But you can have the tunnel created between the two datacenters and use that as the transport to reach the services on the MAG. The chances are that those two datacenters are already connected anyway for other purposes.
Just place the MAG into a DMZ or a new zone at datacenter A. Then setup the routing and access policies so that the MAG addresses can reach the required resouces in datacenter B.
You can then setup those resources on the MAG and the users will be able to connect and use them.
I have a number of remote resources connected across a vpn to the the datacenter made available in this fashion.
no, as spuluka said, the mag cannot do site-to-site vpn.
as long as the sites can see each other, it works without a problem. if there is no communication already set between A & B, it will not work through the mag either