i think it will be different net-block only, we are still in progress of procurement phase on links..

We you be able to use a router to terminate the two links, rather than terminating both links on the firewall (highly recommended - make that strongly recommended)?

Even my intention is to terminate in Routing device rather firewall, also how about creating VDCs for each links on nexus switch ?

I'm not really keen on using Nexus switches to be honest.  As soon as you start using routing and Portchannels life gets a million times more complicated.

Are you able to use standalone edge router to do the job?

Sure, but remember we have 4 links altogether, am not network specialist but am security guy and i want to achieve my cisco ASA configs without any issues.

What sort of speed are the links going to be?

200Mbps, 500Mbps Internet, other links yet to be determined.. any suggesion for this design?

You might be better of telling the provider you want a redundant pair of Internet links, presented to you so you can plug a pair of ASA's into, where the outside interfaces are in the same VLAN, and where they provide first hop )aka default gateway) protection.

Then you only have to worry about the ASA part.

With regard to DMVPN, that part is simple since it is so flexible.

this is fine, but not sure how the link procurement going to be done. thanks much.