Connecting multiple customer sites over a wide area network using an overlay network

What is claimed is: 1. A method for connecting a plurality of customer sites over a wide area network (WAN) of a service provider, wherein each of the plurality of customer sites includes a customer edge router, the method comprising: each of the customer edge routers establishing a Border Gateway Protocol (BGP) peer session with one or more route reflectors; each of the customer edge routers announcing the following to the one or more route reflectors: one or more local routes that are local to the customer site in which that customer edge router belongs; one or more tunnel IP addresses of one or more interfaces of that customer edge router, wherein the one or more interfaces of that customer edge router respectively connect that customer edge router to a set of one or more provider edge routers in the WAN; and a preferred tunnel type and tunnel specific information to reach that customer edge router, wherein the tunnel specific information includes one or more of an encryption key and a password, and wherein the preferred tunnel type and tunnel specific information facilitate automatically setting up secure communication between that customer edge router and other customer edge routers; the one or more route reflectors reflecting the one or more local routes, one or more tunnel IP addresses, and the preferred tunnel type and tunnel specific information received from each of the customer edge routers to the other ones of the customer edge routers; each of the customer edge routers installing the following that is received from the one or more route reflectors from a particular customer edge router: the one or more local routes, the corresponding one or more tunnel IP addresses of one or more interfaces of that particular customer edge router for which those one or more local routes belong, and the preferred tunnel type and tunnel specific information to reach that particular customer edge router; a first customer edge router performing the following in response to receiving a first packet from a first customer device that corresponds to a first local route in a first one of the plurality of customer sites, wherein the first packet is destined for a second customer device that corresponds to a second local route in a second one of the plurality of customer sites: determining that a second customer edge router provides reachability for the second local route, encapsulating the first packet within a second packet resulting in a first encapsulated packet for traversing the WAN of the service provider to reach the second customer edge router, wherein the second packet has a destination IP address that is one of the one or more tunnel IP addresses of one or more interfaces of the second customer edge router, and wherein the second packet has a source IP address that is one of the one or more tunnel IP addresses of one or more interfaces of the first customer edge router, and transmitting the first encapsulated packet over the WAN of the service provider towards the second customer edge router for decapsulation and delivery to the second customer device; and the second customer edge router performing the following in response to receiving the first encapsulated packet: decapsulating the first encapsulated packet to reveal the first packet, determining, from the first packet, that the second customer device is a destination of the first packet, and transmitting the first packet towards the second customer device. 2. The method of claim 1 , wherein the one or more tunnel IP addresses of one or more interfaces of that customer edge router are announced as one of: a Network Layer Reachability Information (NLRI) utilizing a Sub Address Family Indicator (SAFI), an Extended Community, and a transitive BGP attribute. 3. The method of claim 1 , wherein the one or more tunnel IP addresses announced by at least one of the customer edge routers includes a primary address and one or more secondary addresses. 4. The method of claim 3 , wherein the at least one of the customer edge routers indicates a priority of the one or more tunnel IP addresses. 5. A method in a first customer edge router for connecting a first customer site with a set of one or more other customer sites over a wide area network (WAN) of a service provider, wherein the first customer edge router is connected to a set of one or more provider edge routers of the service provider, and wherein the first customer edge router is within the first customer site, the method comprising: transmitting reachability information to one or more route reflectors, wherein the transmitted reachability information includes the following: one or more tunnel IP addresses of one or more interfaces of the first customer edge router, wherein the one or more interfaces of the first customer edge router respectively connect the first customer edge router to the set of one or more provider edge routers of the service provider; one or more network prefixes that are reachable through the first customer edge router; and a preferred tunnel type and tunnel specific information to reach the first customer edge router, wherein the tunnel specific information includes one or more of an encryption key and a password, and wherein the preferred tunnel type and tunnel specific information facilitate automatically setting up secure communication between the first customer edge router with a set of one or more different customer edge routers in the set of one or more other customer sites over the WAN; receiving, from the one or more route reflectors, reachability information to reach one or more of the set of one or more other customer sites, wherein each of the set of one or more other customer sites includes the set of one or more different customer edge routers, wherein each of the received reachability information includes the following: one or more tunnel IP addresses of one or more interfaces of a different customer edge router, wherein the one or more interfaces of the different customer edge router respectively connect the different customer edge router to a set of one or more provider edge routers of the service provider; one or more network prefixes that are reachable through that different customer edge router; and the preferred tunnel type and tunnel specific information to reach that different customer edge router; and installing the reachability information received from the one or more route reflectors in one or more forwarding structures; receiving a first packet from a first customer device in the first customer site that is destined for a second customer device in one of the set of one or more other customer sites; determining, through accessing the one or more forwarding structures, which one of the set of one or more different customer edge routers provides reachability for the second customer device; encapsulating the first packet within a second packet resulting in a first encapsulated packet for traversing the WAN of the service provider to reach the customer edge router determined to provide reachability for the second customer device, wherein the second packet has a destination IP address that is one of the one or more tunnel IP addresses of one or more interfaces of the customer edge router determined to provide reachability for the second customer device that was received from the one or more route reflectors, and wherein the second packet has a source IP address that is one of the one or more tunnel IP addresses of one or more interfaces of the first customer edge router; transmitting the first encapsulated packet over the WAN of the service provider towards the customer edge router determined to provide reachability for the second customer device for decapsulation and delivery to the second customer device; receiving a second encapsulated packet, wherein