ike_flood_dos with IKEv2
I set up IKEv2 and it works fine but 1 VPN user publishes a visual studio website to an on premise webserver and I get the notification:
Message: IKE flood attack against [external interface IP] from [his external IP] detected. 221 IKE flood packets dropped since last alarm.
It can be 1 or more IKE flood packets. Just curious if there's something I can look at. I've increased the IKE flood to 1500 but that doesn't help. It seems to be only when he publishes.