We have 4 firewalls: 2 FTD 2130 in HA (Active-Passive) pair and 2 ASA5525x in HA (Active-Passive) pair. In network redesign process my SV asked my to connect them directly. I prefer joining each one with one interface to switch and allocate vlan to them but SV tells he wants without SW directly connection. So, I wonder what will be design of this situation?
Thanks in advance!
Well you can do either, but it's recommended to connect via a switch:-If you do not use a switch between the units, if the interface fails, the link is brought down on both peers. This would apply to either ASA or FTD.
It all depends on requirement, how close these kits are. Do you have any HLD diagram how they are connected.
what is the role of each par of devices.?