Router 2600 Drops connection to the internet

meltonw001 · ‎10-28-2006

Team,

Our network currently has a T3 a connection and a 2600xm router that operates at 1 site. However we have 50 vpn users that connect from the outside into our network. Once everyone gets on this network along with our hosted application that worldwide users get on, the router is overwhelmed and shuts down. So internal, we are kicked off the internet, the external VPN users are experiecning extreme slowness and our customers are getting a page cannot be displayed to our application.

A IT person went a purchased a VPN accelaerator card that was suppose to offload the this usage, however that isnt working.

What do you suggest we do? I have attached the sho ver and cpu proccess..

spremkumar · ‎10-31-2006

Hi

From the show process cpu output its very much evident that ip input process is taking its toll on cpu cycle.

Can you check whether CEF is enabled on the global config using show ip cef command ?

By default with the later versions of ios codes its enabled by default but still do check the same.

Also can you confirm whether you are encrypting any other traffic which is not required to do so ?

If possible do post out your config here so that the same can be verified ..

I did check the bugs related to this software train and found none similar to your case..

regds

attrgautam · ‎10-31-2006

Hmm T3 with a 2600 is a bit too much with IPSec thrown in.

Does "sh crypto engine accelerator statistic " show you encrypts and decrypts just to verify that the onboard vpn card is fine ?

NAT, ACL, QoS if turned on can hurt the process too.