I will try to make this question as simple as possible.
I have a ASA that is connected directly to a remote site via a p2p metro ethernet circuit. Therefore, the ASA has an interface on that "remote" network. In the firewall, the network is a connected route. I will use 192.168.1.0/24 as the network.
I want to create a redundant path to the remote site via a VPN over our Internet connections. How do I set up the tunnel and the routing to make this happen? I get the tunnel set up no problem. How do I get traffic destined for 192,168.1.0/224 to go over the VPN as opposed to the directly connected route when that connection fails?
route p2p 192.168.1.0 255.255.255.0 x.x.x.x 10
route vpn 192.168.1.0 255.255.255.0 y.y.y.y 20
x.x.x.x will be the next-hop when going out the p2p interface.
y.y.y.y will be the next-hop when going out the VPN interface.
Which IP do you have on the p2p and on the VPN (internet) interface?