01-09-2019 09:29 AM
I have two ASA routers running 9.2 code.
I have a policy based ipsec tunnel between them, sip inspection disabled, and identity nat between the two firewalls. In this configuration SIP works just fine.
When I change the tunnel to VTI tunnel everything works except SIP. All layer 3 is fine, all other applications work fine as well. When I capture on the inside interface of the firewall I no longer see SIP traffic coming across the tunnel.