I am facing an Active/active failover problem
model ASA 5525
system image: asa922-4-SMP-k8.bin
both firewall configuration matched. and interface showing up. but failover is not working.
any one help this..
Here is a link to a document showing the configuration.
Here is a configuration example.
It looks like you may be monitoring the SFR/IPS module as part of the failover, which has failed on the primary firewall. It is in recover mode.
If you provide the output of
Show run all monitor-interface
If you see the module as being monitored, just negate it with the no command until you figure out what is wrong with the module. This will at least get your failover working.
just to add what @GRANT3779 said.
he is right follow his instruction. moreover, it seems your SFR could be problemetic. might you need to re-image this module. however, recover should come in to state as UP/UP. otherwise, do some test no sucess than reimage this.