I've been searching the web trying to find some answers regarding best practices when it comes to ASA Active/passive failover with OSPF.
We have pairs of 5520s and 5540s connected to pairs of nexus 7ks and 6500 switches. The ASAs plug into switchports on the same VLAN, and peer with OSPF to the SVI on the switches. This is working fine, but the problem I am running into is the 2 switches are peering with OSPF across the layer 2 link. We prefer the switches to only peer across a seperate L3 link we have between the switches.
How would one go about preventing the switches from peering across the L2 link, but the active ASA continue to peer with both switches?
Anyone have links to any best practices documents that go into further detail of deploying ASA active/passive failover with OSPF?
Thank you for your help!