Assume there are 100 pairs of ASA's scattered throughout the country but belonging to one AS, one enterprise.
What would be the problem(s) with always assigning the same IP addresses from the same subnet for every pair?
- willing to use dedicated interfaces for failover state traffic (no production data) so, this subnet would never need to be routed.
The only issue I can see is error reporting/logging/traps for failover status, but even then, at least for traps and syslog collection, the messages would be sourced from the ASA's unique management interface.
Any other thoughts appreciated.