Currently, we have IPSEC VPN tunnels between juniper devices. I have a SSG5 as the firewall.
We are moving to AT&T MPLS with a cloud-based firewall. I will be keeping the old circuit alive for 2 sites as the MPLS doesn't do IPSEC VPN.
I have the idea that SSG5 will still be default gateway and traffic for the 2 IPSEC subnets routed via static routing through the old ISP and traffic for other subnets routed to the MPLS AVPN. Internet traffic would also route via MPLS AVPN.
Assuming all my config is right, does this sound like it would work?