I have lan2lan tunnels between 2 branch offices and the main office. The branch offices have ASA5505 and the main office has a PIX515E. We are using cisco soft phones at the branch offices and they can talk to the main office but cannot talk to each other. There is no audio even though the call connects. What we need is to configure the PIX515e such that there is RTP stream between the 2 branch offices. This can be achieved by creating a l2l vpn between the 2 branch offices but I am lookinfg for a soultion that allows data to flow between the 2 branches via the main office.
I believe that Steven has correctly identified the basic issue as the fact that by default the PIX will not forward out an interface traffic that was received on that interface. A common result of that is that VPN site to site works from remotes to HQ but not from remote to remote. The command that he gives will resolve this issue. Be aware that this command was introduced in releases 7.0 and above. If your PIX is running 6.x or lower then it will not work.
I agree that Lan2Lan is the best option, not necessarily the only option. A code upgrade might also get you remote to remote. But it would be more complex and I agree that for types of traffic that are delay sensitive (such as voice/RTP) a site to site connection is better than one relayed through a common HQ.
DocumentationCode download linksGoalRequirementLimitationsSupported ISR and UCS-E ModelSupported ISRG2 and UCS-E Blades:Supported ISR4K and UCS-E Blades:Step by Step ConfigurationConfigure one of the connectivity options to access the Cisco IMC from the n...
Firepower Threat Defense (NGFWv) on UCS E-series - Transparent Mode in HA
DocumentationCode download linksGoalRequirementLimitationsSupported ISR and UCS-E ModelSupported ISRG2 and UCS-E Blades:Supported ISR4K and UCS-E Blades:Step by Step ConfigurationCo...
I am currently unable to specify "crypto keyring" command when configuring VPN connection on my cisco 2901 router.
The following licenses have been activated on my router :