Hello community
I'm quite new to ACI so bear with me.
I am trying to get eBGP L3Outs working from ACI to an active/standby pair of ASA firewalls (Picture attached). I want resilient BGP peerings that will failover when the ASA fails over. Using routed sub-interfaces I have managed to get BGP running between Leaf 1 and the active ASA and after ASA failover I get BGP between Leaf 2 and the *new* active ASA but never the two peerings at the same time.
I tried moving to a Bridge Domain model and could get IP connectivity from the leaf switches to the active/standby IP addresses but L3Outs wouldn't work.
Essentially, I'm after an L2 interconnect that will allow resilient eBGP peerings. I've seen a few posts about active/standby firewall connections but they seem to focus on static routing only.
Chasing my tail at the moment so any ideas/solutions appreciated. Thanks.