Solved: Hi Hassan,

hassan.javad · ‎05-25-2016

we are having VPN tunnel in our Firewall with other peer partner. we use ASA 5520 with IOS "asa825-k8" and ASDM version 6.4.

our partner has several services running in this VPN tunnel, including SIP.

all the other services are working fine only SIP connections cannot come up.

the issue is we permitted any to any IP services on both inside and outside interfaces, but this connection could not come up.

is there any option for SIP over VPN to be configured on ASA?

Aditya Ganjoo · ‎05-25-2016

Hi,

As you can see from the logs it is being denied on the inside interface.

So you just need to permit this by opening an ACL for this traffic on port 5060.

Let me know if this works.

Regards,

Aditya

Please rate helpful posts and mark correct answers.

Aditya Ganjoo · ‎05-25-2016

Hi Hassan,

Could you make sure inspection for SIP is enabled on the ASA ?

show run policy-map

Regards,

Aditya

Please rate helpful posts and mark correct answers.

hassan.javad · ‎05-25-2016

Hello Mr. Ganjoo,

it was on by default but SIP was not coming up. so we disabled that. now i just enabled this feature.

but the issue is not resolved. i see in logs my data is denied in my inside interface of firewall (see attached please)

is there any more options? please guide

Regards,

Aditya Ganjoo · ‎05-25-2016

Hi,

As you can see from the logs it is being denied on the inside interface.

So you just need to permit this by opening an ACL for this traffic on port 5060.

Let me know if this works.

Regards,

Aditya

Please rate helpful posts and mark correct answers.

hassan.javad · ‎05-28-2016

Hello Dear,

Appreciated!

I just permitted SIP on both side (inbound and outbound) on inside interface and now seems everything works fine.

Aditya Ganjoo · ‎05-29-2016

Hi Hassan,

Glad to assist.

Please close the discussion.

Regards,

Aditya

Please rate helpful posts and mark correct answers.

SIP over VPN tunnel