I am looking for basic clarification on Cisco Stack Switch connection to Firewall HA pair. I am planning to have a Firewall Active/passive HA pair with port aggregation configured with LACP. Do i need to configure separate Port-channel in Switch for Active Firewall and Standby Firewall Or can connect both firewall in same port channel. If both works, what is the pros and cons of each design.
- LACP expects both ports to be active, that means if yoy choose for Active/Standby solution , then it's better to have 2 LACP pairs too.
You have to use two channels on the switch as the ASA/FTD in HA is not a single system from the LACP view.