I have the following scenario. We have 2 6509s running HSRP on the distribution layer. These 2 boxes are connected using Layer 2 links to the access switches.
One of the access switches is also a 6509 and it needs to be firewalled off from the rest of the network.
I am debating whether to buy a pair of FWSM modules or go with a pair of ASAs. Also, we are running EIGRP between the distribution and core.
If I go with FWSMs for the distribution 6509, will it be better to place the MSFC inside or outside?