Customer has about 50 remote 871s homeworkers with IP phones.
Main site has ASA 5510 housing the CUCM.
When user1 calls user2 theres no audio (since theres no IPsec SA built between remote users).
The fact that user1 calls user2 builts the IPsec between router1 and ASA, but since theres no IPsec SA for the users between router2 and ASA, the audio fails.
If user2 calls user1 now, then the call is succesful, because the SAs are built:
IPsec SA between router1 and ASA for the user1-user2 traffic
IPsec SA between router2 and ASA for the user2-user1 traffic
So, the problem is that both sides have to initiate traffic to make this work.
What I did to fix the problem is configure IP SLA on the routers to send a PING packet every 10 minutes to their peer homeworkers (thus keeping the SAs between remote locations up all the time).
IP SLA works but Im looking for a better way to fix the problem of having to manually initiate traffic (DMVPN or running a routing protocol does not work with ASA through the tunnel).
I guess increasing the IPsec SA lifetime is another option.
Just looking for recommendations, thanks!