Is it possible to setup site-to-site VPN which will allow 2 intercaes in each location to communicate ?
I'm trying to implement QoS for IPPhones and I found that the easiest way is to create VLANs - this way it is easier to create bandwith limits on computer network and also prioritize VLAN with IPPhones...
Here is my situation:
First Location: Cisco ASA 5505 (3 interfaces: outside, inside, ipphones)
local net: 10.1.1.0/24 - interface inside (switchport 1,3,4,5,6,7)
local net: 192.168.10.0/24 - interface ipphones (switchport 2) security level 0
Second location: Cisco ASA 5505 (3 interfaces: outside, inside, ipphones)
local net: 10.0.0.0/24 - interface inside (switchport 1,3,4,5,6,7)
local net: 192.168.11.0/24 - interface ipphones (switchport 2) security level 0
Localy in each location VLAN is working just fine - I can access IPPhones from 10.x network, etc. NAT is also working fine for both VLANs. I also allowed interfaces with same security level to communicate.
I was able to setup site-to-site VPN but only for 10.x.x.x networks. When I'm using graphical UI VPN wizard its asking me on which interface I want to run VPN...If I try to create 2nd VPN its telling me that I can't because it already exist.
I tried to modify it by creating network-objects and I also created NAT exceptions for both Vlans - still no luck.
Can anyone point me to right direction ?
PS. Both ASA are running software 8.2.2
Thanks in advance