What's the default behavior for Reverse Route Injection ( RRI ) for L2L VPNs ?
The reason I am asking is because when I add the following:
!crypto map OUT-Map 100 set peer 18.104.22.168
!crypto map OUT-Map 100 set transform-set Corporate-vpn
!crypto map OUT-Map 100 match address 192.168.255.1
!crypto map OUT-Map 100 set reverse-route
It adds a static to the pix routing table even when the VPN is not connected. Is that normal? We use RRI for our Remote Access VPN?s with dynamic crypto maps and the static route only appears when the VPNs are connected. We only want the routing injected when the VPN is connected because we redistribute the routing internally.