Re - The attached picture
There are two secure sites, site A and site B. Administrators of the servers and network devices at each site and site site to site communication has to be secured by VPN.
Would the depicted design be possible whereby site to site communication is via a L2L IPSec VPN terminated on the ASA's at site A and B and with remote access IPSec VPNs terminated on the ASA at site A.
Presuming I am right in thinking that VPN can be enabled on multiple ASA interfaces, the only problem I can see, is whether administrators at site A, with remote access VPN configured on the ASA at site A, would be able to reach resources at site B over the L2L IPSec VPN.
Does anyone know of any design documents that I could use to help implement a solution like the one above. I have a potential customer that has the same solution in place on alternate vendor equipment.