Solved: Try getting the remote VPN

dkomekow · ‎06-18-2017

Cisco 2821 with onboard VPN encryption

IPSEC - IKE failures and High CPU consuption

show proc cpu sort gives me the next :

Crypto IKMP CPU utilization for five seconds: 99%/12%; one minute: 99%; five minutes: 99%
PID Runtime(ms) Invoked uSecs 5Sec 1Min 5Min TTY Process
236 1049376 1095856 957 90.15% 90.21% 90.54% 0 Crypto IKMP

Ipsec and Isakmp log notes are attached.

Please help why do I have high cpu consumption?

And what can I do?

Philip D'Ath · ‎06-19-2017

Try getting the remote VPN peers to reboot their devices.

Failing that, you may be experiencing an IKEv1 attack.

View solution in original post

Philip D'Ath · ‎06-18-2017

It is constantly trying to rebuild a VPN.

I think the first thing I would do is move to a gold start release of code, such as 15.1.4M12a.
https://software.cisco.com/download/release.html?mdfid=279120798&softwareid=280805680&release=15.1.4M12a&relind=AVAILABLE&rellifecycle=MD&reltype=latest

dkomekow · ‎06-19-2017

This version i currently instaled and it was stable one for a last 5 months.

The strange is that a have a lot of incoming ike requests, probably that is pings from host machines.

Really don't know what to do.

Philip D'Ath · ‎06-19-2017

Try getting the remote VPN peers to reboot their devices.

Failing that, you may be experiencing an IKEv1 attack.