Multiple BOVPN-VI Tunnels + Forcing All Traffic
Hoping one of you super smart folk have some insight here - I'm currently looking at picking up a couple of T45-CWs for some remote mobile sites, and as far as I can tell there isn't any documentation for my scenario, and i don't have any spare equipment to play around with before pulling the trigger.
I'd like to add two devices, and have them BOVPN (virtual interfaces) back to HQ, and have both force all traffic through the tunnel so they use the outgoing proxies at HQ.
1) Do BOVPN-VIs support this? The documentation (as far as I can tell) only speaks to manual BOVPN tunnels.
2) If so, presumably adding the 0.0.0.0/0 route in the remote side of the tunnel would route everything through the VI - but what does the HQ side configuration look like? I'm guessing just the routes to the remote subnets are required in the VI configuration, but what policies (if any) are required?