VRF trouble

Connections from 2 ISP-s running into 2 physical interfaces. I need both interfaces to be pingable from WAN side- therefore I need to default routes directed toward ISP gateways. Therefore I need 2 different VRFs (vrf aaa, vrf bbb).

I have two IPsec VPN tunnels running over Tunnel VTI interfaces: Tunnel0 (vrf elion) and Tunnel1 (vrf aso). Tunnels are up and pingable. Tunnel0 runs over ISP A only, Tunnel1 runs over ISP B only.

I have a L2TPv3 tunnel running over Tunnel1. If Tunnel1 goes down (sla track process) then the L2TPv3 is configured to run across Tunnel0 instead (with floating statis routes). 

In order to support routing from <VRF aso> to <Tunnel0 in VRF elion> I need VRF route leaking.

I add rd (route-distinguishers) to VRF aso and elion, and export/import routes mutually with route-target export/import/both. 

Routes are leaked. Tunnel interface of other side is not pingable from either VRF. why?

https://learningnetwork.cisco.com/message/319216#319216