Help
FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
VinayHM
Staff
Staff

Created on ‎01-16-2025 12:17 AM Edited on ‎01-24-2025 02:47 AM By Moderator

Article Id 370602

Technical Tip: Reducing CPU utilization by network detection daemon

Description This article describes how to reduce CPU utilization by network detection daemon.
Scope FortiGate.
Solution

The daemon is CID (Client Identification daemon). This daemon is used for device detection, and it helps in Internet of Things detection.

 

The CID process is 'Device Identification daemon'. It is enabled by default on all interfaces with 'set role lan'.

Disabling the device detection, the resource CPU will be released by the CID daemon.

To check if device detection is enabled, refer to this related KB article: Technical Tip: Enable 'Device Detection' to allow FortiOS to monitor networks.

 

To get more logs with this daemon, run the below commands:

 

diagnose sys top <refresh interval> <max # of lines> <iterations>

 

1.JPG

 

Process information:


diag sys process pidof cid


2.jpg

 

For each process, collect the outputs of:

diag sys process dump < pid >
diag sys process pstack < pid >
diag sys process trace < pid >

 

Debug CID:

 

diag deb application cid -1
diag deb console timestamp enable
diag deb enable

 

Leave it running for 1 minute.

 

diag deb reset
diag deb disable
319
0 Kudos
Suggest New Article
Article Feedback
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2025 Fortinet, Inc. All Rights Reserved.