Customer has a pair of Cisco 5580 firewalls which protects their corporate network in an active/passive pair, which in turn connecting to a pair of 3rd
party IPS devices.
There is concern by an auditor, that a network software failure can occur which prevents the passive 5580 from taking over (i.e., the physical link doesn’t go down).
I’d like to understand better what conditions cause the passive device to take over, and if we can use any features to monitor upstream or downstream IP addresses (such as IPSLA) or OSPF, so that if an upstream/downstream device stops responding, we can switch over to the passive 5580.
Thanks