I think I already know the answer but I will try the brain trust here;
A customer wants to know if it's possible;
A small branch office that has all traffic VPN'ing back to a UC520, they want to know if the tunnel goes down can they have traffic just go directly to the Internet, then when/if the tunnel comes back push all traffic back over the tunnel.
There is a 871 at the branch and a switch.
I know I could do this with two more routers using IP SLA and policy based routing, but I don't think there is any way to modify the crypto to change traffic based on the tunnel being up or down.
What's possible here?
Thanks in advance,