I have a remote site with two Cisco routers. One router has an Internet connection with a VPN tunnel configured back to my hub site and the other router has a frame relay PVC back to my hub site. The remote site PCs are all set up with a default gateway of the router connected to the frame relay PVC.
I want to force some non-critical traffic over the VPN tunnel, so I configured a static route in the frame conencted router such as:
ip route 10.2.2.50 255.255.255.255 192.168.255.1
10.2.2.50 is the IP address of the server at the hub site for non-critical traffic
192.168.255.1 is a loopback address configured at the hub site that is only learned via the VPN tunnel and advertised to the frame relay router over the remote site LAN
Therefore, the static route in the frame relay router forces the non-critical traffic over to the VPN tunnel router. The VPN tunnel router than routes the traffic up to the hub site.
If the VPN tunnel fails, the loopback address goes away and the non-critical traffic is routed via the normal IP route table over the frame PVC to the hub site.
I now want to use my remote VPN tunnel router for a local Internet connection. In my remote frame relay router, I want to configure the following static route:
ip route 0.0.0.0 0.0.0.0 10.3.3.2
10.3.3.2 is the IP address of the VPN router LAN port.
1) Will this new static route for 0.0.0.0 screw up my failover for non-critical traffic to the frame PVC if the tunnel fails? In other words, will the first static route
(ip route 10.2.2.50 255.255.255.255 192.168.255.1) use the second static route
(ip route 0.0.0.0 0.0.0.0 10.3.3.2) (i.e., recursive routing) to make it believe that it can still use the VPN router to get to the 192.168.255.1 loopback address via the VPN router. Therefore, continuing to route non-critical traffic to the VPN router even though the VPN tunnel is down? Or will the first static route get deleted from the IP route table?
I have done a decent amount of research on recursive routing and its a little confusing. How many times can the IP route table be consulted before it finds a directly connected interface. For example, in my above question, when the VPN tunnel fails, will the IP route table of the frame relay router be consulted the first time to find the first static route
(ip route 10.2.2.50 255.255.255.255 192.168.255.1), then be consulted to find the second static route
(ip route 0.0.0.0 0.0.0.0 10.3.3.2), and then be consulted a third time to find that the 10.3.3.0 subnet is directly connected via the ethernet0 interface (thus incorrectly forwarding the non-critical traffic to the VPN router when the VPN tunnel is down)?
Or are recursive route lookups limited to 2 lookups? If this is the case, I would think that the addition of the second static route (ip route 0.0.0.0 0.0.0.0 10.3.3.2) would not effect my failover since it is configured with a next hop IP address as opposed to the ethernet0 interface.
Would the answer be any different if the default static route for Internet conenctivity was configured using the frame relay router LAN port instead of a next hop of the VPN router LAN port (ip route 0.0.0.0 0.0.0.0 ethernet0)?