Attached is a network diagram .

R1 and R2 have links from different ISP and they will be connected to some other compnay's network using VPN . External company is not a part of our's so we cant exchange whole routing table with them and it will be limited to specific routes .

Earlier there was only one router and I had used Site to Site VPN ( CLassic ) which was running very fine but now we have 2 routers . I cant use site to Site VPN now as the firewall has static route pointing towards R1 and even if ISP1 fails , firewall will not move its route to R2 . It would be best to use a dynamic routing protocol in this case

I will have to configure SVTI on R1 and R2 for this purpose for VPN connectivity and use a dynamic routing protocol i.e. OSPF etc and redistribute it to my own company's routing process so that every machine on my network knows about that route .

External company earlier said that they wont accept our IP SCheme and wants that to be NATTED . Now that was working fine with static routes but the problem now is that if I go for Dynamic Routing protocol how can i advertise NATTED ip in the routing process ?