I have a network where some spoke routers (branch offices , all routers are 2811) connect with IPSec VPNs over adsl lines to my central office and a 5540 ASA. Also there is a backup central site with another ASA 5540 where VPNs terminate in case of the primary asa failure.
So to every spoke router there is a crypto map with these two peers. Primary as default and the other one as secondary. Primary and secondary offices communicate with each other through a metro-ethernet line.
What i want to do is put a router behind these two ASA's accesible to both of them and then create GRE tunnels from the spoke routers to the hub router and run ospf or eigrp protocol over them. You can see the configuration i am trying to create in the attached jpeg.
My question is if this thing is going to work. Is it going to be able to detect if some spoke lost connection to the primary site and connected to the secondary and forward traffic correctly?? Does it really care from which site the spoke router connects or what it wants is connectivity from tunnel to tunnel only??? And you would prefer ospf or eigrp??? All equipment is cisco.
Any help would be very appreciated. Thanks in advance.