Sadly I haven' t found that option either. The way we do it is SNMP to a
3rd party. I would assume you expect the FAZ to do this, and i would
agree with you.
disable all on external enable https/ssh on internal and make available
over site to site ipsec tunnel. One option if you don' t use tunnels...
1)create a vip from external ip to internal interface ip 2)enable your
internal access (i.e. https ssh) 3)...
