Our customer has two ASA5550-K9 and asks us to configure both firewalls in transparent mode. These firewalls are design to protect traffic between outside and inside.
The 1st firewall's outside interface connect to first router 3825. The firewall's interface connect to first L3 switch.
The 2st firewall's outside interface connect to second router 3825. The firewall's interface connect to second L3 switch. Both 3825 routers and both L3 switches are running OSPF.
All paired interfaces reside in different segment (in other words they are all running as layer 3).
However, the requirements is to have firewall's rules will be exactly the same. Is there anyway to synchronize the firewall configuration for both firewalls by only configuring one machine?
The main objective is to ensure both configuration are exactly the same by configuring one machine only.
I understand that failover command has the capability to do this. But doing so, one of the firewalls must be in standby mode, however both firewalls are required to be active to eliminate the failover time.