I have quite weird problem, RB1000 configured for central place with 150+ small consumer routers (dlink, zyxel) in remote locations connected thru IPsec (ESP tunnels).
All works OK for 5-30min (seems to be random time but under a hour definitely) until CPU goes bezerk to 100% (before that with all IPsec tunnels CPU usage is 0-15% max); all tunnels drop, remote peer list is cleared and installed-sa list is inacessible. Tunnels are then slowly built up again until next drop in x minutes. During all that time CPU is nailed at 100% (also later if I remove RB1000 from the network). Some time after the start of 100% CPU also the whole ip ipsec menu is inaccessible (ssh/winbox), no reply on the commands…
Tried this on 3.30 and 4.2 routeros versions, same results.
Anybody had a similar setup maybe on some other version of routeros that is working? Is there maybe a limit to number of IPsec tunnels (from the CPU usage when working normally I’d say 150 is still quite low for this hardware)?
