High scanunitd CPU usage

I' d love to see that too. I have a 60C running 5.0.3, and I' ve tried to disable as much as possible to stop conserve mode every night. More RAM than CPU for me, but scanunitd is one of the big culprits. Can' t find descriptions of any of the processes in the cookbook, CLI guide, Troubleshoot guide, etc. Would love to know what some of these are so I can decide whether or not to kill them until 5.0.4 comes out.

Scanunitd? Sounds like the vulnerability scanner. Check in User & Device -> Vulnerability Scan -> Scan Definition. If the feature is enabled then it should default to once a week, 00:00 on a Sunday. Normally won' t do much as you need to tell it what to scan, but if you have an interface setup to Detect and Identify Devices & you' ce ticked the box to add those devices to your scan list then you' ll have the scanner going to town. I easily managed to put a 1240B pair into conserve mode with the scanner in the past, and that was while scanning a small /26 block of addresses. Regards, Matthew Mollenhauer

Thanks Matthew - I kind of figured it was the Vulnerability Scan myself but wanted confirmation. Unfortunately, I don' t have the scanner enabled on my box so it doesn' t even show on the GUI to configure. Which kind of has me wondering why it' s taking up so much memory?

Also (and I feel kind of silly asking but have been burned in the past by quirky box-specific settings on other products) when we set up the box we were looking at VPN access for management after hours, but it is unused. I want to turn VPN off to streamline more, but do any of the Fortinet servers (updates, cloud, etc) require VPN access? Thanks

Proxy AV also uses sacnunitd too