I have scenario where I have a corporate(HUB) site with multiple remotes(spokes). One remote in particular has it's own internet connection via another carrier and I want to use IP SLAs with policy-based routing to force this site to choose the local/site internet access for primary internet access and use the HUB internet access as a back-up (using BGP with a default route being advertised to the remote).
The issue I am having is that unless I put a default static route in (which negates what I am trying to do) pointing to the other ISP providers router the packets keep going over our MPLS network to get access to the internet.
All normal traffic with known routes learned via BGP and EIGRP (on the LAN) work fine. Just the policy-based routing for the SLA doesn't work.
Below is the part(s) of the config that relate to the IP SLA etc..
***** config starts here *****
track 123 rtr 1 reachability
track 124 rtr 2 reachability
description Remote LAN
ip address 192.168.127.2 255.255.255.0
ip policy route-map Internet_Failover
ip route xxx.59.105.246 255.255.255.255 192.168.127.3
ip sla 1
ip sla schedule 1 life forever start-time now
ip sla 2
ip sla schedule 2 life forever start-time now
access-list 101 deny ip any xxx.155.50.0 0.0.0.255
access-list 101 deny ip any 192.168.0.0 0.0.255.255
access-list 101 deny ip any 192.xxx.89.0 0.0.0.255
access-list 101 deny ip any 10.0.0.0 0.0.0.255
access-list 101 deny ip any 172.16.0.0 0.15.255.255
access-list 101 permit ip any any
route-map Internet_Failover permit 10
match ip address 101
set ip next-hop verify-availability 192.168.127.3 10 track 123
set ip next-hop verify-availability xxx.207.89.41 20 track 124
**** config ends here ******
Any assistance would be greatly apprciated. The IOS is "c2800nm-advsecurityk9-mz.124-15.T7.bin"