We are thinking on how we can make our IPSEC tunnels failover automatically. We have a simple design where the IPSEC endpoint is terminated on a PIX/ASA firewall then the other end is our client. We want to have a mechanism that whenever our client peer goes down, the traffic will be rerouted to one of our centers which has the backup tunnel configuration. Usually we use static routes to force the traffic to be routed to the other center but we want to do it automatically. Do you have any idea how? Thanks.