https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160916-ikev1
Cisco recently published this vulnerability information which affecting all my IOS XE doing Ikev2 today. I have a huge deployment of Ikev1 with DMVPN and I am currently on the process of this vulnerability mitigation either by upgrading software image to a fixed release or moving forward with Ikev2. I think, down the road, we all have to go with Ikv2 because not just to overcome with this vulnerability issue but also to get benefits of a lot other added features that IKEv2 can provide.
I wonder if any of you has done a smooth migration from IKEv1 to IKEv2 in a large environment can share that experience with me.
Thanks,
Josh