Just a little more background & info:
This just got backported to 4.0, so I got to deal with it today. In addition to IP, the Cut process was also at 100%. It prevented DNS, DHCP, SAMBA, NTP and other important things from loading.
Here are Ubuntu bug reports on the issue:
https://bugs.launchpad.net/ubuntu/+source/linux/+bug/1516052https://bugs.launchpad.net/ubuntu/+source/linux-lts-utopic/+bug/1514785It looks like there are several kernel versions affected, so this may come up again with future upgrades.
It stems from a bug in the kernel that makes the ip command output the first rule infinitely. You can use this command to see if you're affected:
ip route ls
Broken Output:
0: from all lookup local
0: from all lookup local
0: from all lookup local
0: from all lookup local
0: from all lookup local
0: from all lookup local
0: from all lookup local
<repeats indefinitely - ctrl+c to quit>
In Zentyal, this causes one of the network scripts to hang because it's waiting for that command to end. This prevents loading of other services and resulted in my network being severely broken.
Besides the previously mentioned fix of rolling back the kernel, you can modify the script in question:
/usr/share/zentyal-network/flush-fwmarks
I just copied the file to flush-fwmarks.old, then edited the original commenting everything out. I like this solution because I still get the benefit of the security fixes in the new kernel. The down side is that the ip command is broken and firewall marks don't get flushed, but I don't really care about those
If you do care about those and have some shell scripting ability, it should be relatively easy to modify that script to notice that ip is broken and move on.