Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1419
Views
0
Helpful
2
Replies

2821 with AIM-VPN/SSL-2 high CPU utilization

Ralph Rye
Level 1
Level 1

‎01-23-2008 01:32 PM - edited ‎02-21-2020 03:30 PM

I have a 2821 that I am using in a IPSSEC VPN setup and the rotuer is experiencing very high CPU utilization when traffic rates are high (40 Mpbs).

I am concerned because I have another 2821 router using the on-board VPN module and its configuration is almost identical (another spoke on the DMVPN setup) to the 2821 with AIM module but the CPU utilization is drastically lower given similar traffic loads.

The 2821 with AIM module is running 12.4(9)T4. Is there possibly improvement in later code releases?

Anyone have any CPU utilization issues with there AIM modules?

Thanks,

Ralph

Labels:
0 Helpful
2 Replies 2

tstanik
Level 5
Level 5

‎01-29-2008 01:30 PM

Check if you have configured manual crypto maps in your router as manual keys are not supported in hardware, therefore all crypto will happen in software. Following link may help you

http://www.cisco.com/en/US/docs/ios/12_2/12_2z/12_2zj/feature/guide/gtaimvpn.html#wp1042343

0 Helpful

Ralph Rye
Level 1
Level 1
In response to tstanik

‎02-20-2008 08:16 PM

I believe you are referring to this statement from the link you posted:

Restrictions for DES/3DES/AES VPN Encryption Module

•Rivest-Shamir-Adelman (RSA) manual keying is not supported.

Correct?

My question is do they mean Manual keying = pre-shared keys??

Thanks

0 Helpful
Customers Also Viewed These Support Documents