I recently configured failover on a pair of 5510 firewalls. The configuration is Active / Standby and was setup by the Wizard in the ASDM.
We tried a failover test this morning. As the firewalls are running OSPF I wasn't expecting an instant failover - however the LAN side failed over and reconnected me to the firewalls but the DMZ interface didn't (couldn't route to it) and the devices on the DMZ then couldn't be contacted from the LAN.
A bit of digging in the documentation suggested that I needed to enable MAC address failover. This I tried but after doing this I could only connect to the ADSM by using a local password as it was no longer accepting AAA user names!
Should mac address failover use the interface bia addresses or another address?
I am now rather confused... attached is the routing code from the firewall and the standby code as well