I have local digital voice server which is Siemens hi-path 3000.
and from this local site i have configured IPSec Site-to-Site VPN to a remote site, ASA from my local side and Cisco 2811 with IOS firewall.
Now, the remote IP phones is connected and registered with this voice server (siemens), but they can't make calls to my local LAN through site-to-site VPN, but i can make calls normally from my local site to the remote-site.
I disabled the Firewall settings at the remote site for testing, and everything goes fine.
It seems it is inspection error at the firewall settings from the remote site, i asked them for the required protocols for the RTP traffic, and they informed me that this system is using H.323 and SIP, and i configured them as mentioned below. Any comments?
ip inspect name firewall cuseeme
ip inspect name firewall ftp
ip inspect name firewall h323
ip inspect name firewall icmp
ip inspect name firewall netshow
ip inspect name firewall rcmd
ip inspect name firewall realaudio
ip inspect name firewall rtsp
ip inspect name firewall esmtp
ip inspect name firewall sqlnet
ip inspect name firewall streamworks
ip inspect name firewall tftp
ip inspect name firewall tcp
ip inspect name firewall udp
ip inspect name firewall vdolive
ip inspect name firewall skinny
ip inspect name firewall dns
ip inspect name firewall h323callsigalt
ip inspect name firewall sip
ip inspect name firewall sip-tls
And i applied the firewall at the ethernet interface (LAN gateway) from that remote site
DocumentationCode download linksGoalRequirementLimitationsSupported ISR
and UCS-E ModelSupported ISRG2 and UCS-E Blades:Supported ISR4K and
UCS-E Blades:Step by Step ConfigurationConfigure one of the connectivity
options to access the Cisco IMC from the n...
Firepower Threat Defense (NGFWv) on UCS E-series - Transparent Mode in
HA DocumentationCode download linksGoalRequirementLimitationsSupported
ISR and UCS-E ModelSupported ISRG2 and UCS-E Blades:Supported ISR4K and
UCS-E Blades:Step by Step ConfigurationCo...
Question I am currently unable to specify "crypto keyring" command when
configuring VPN connection on my cisco 2901 router. The following
licenses have been activated on my router :