We have a class c public block that we want to multi-home between two 1Gb ISP links with BGP. Since these are equal cost links, we want to utilize them in an Active/Active configuration. I haven't had time to lab this up yet, but I'm wondering about asymmetric routing. With an active/active configuration, return traffic could potentially come in on either link, and I don't want to globally enable asymmetric routing on the firewalls
I am hoping someone can offer some suggestions or point me to documentation?
Only way I see it is to use a vdom with asym enabled, which makes it just an L3 router, to terminate both circuits and handle BGP. Nothing is different from putting a physical router in front of the FGT.