|Description||An explanation of the log message "The system has entered conserve mode."|
|Steps or Commands|
The FortiGate antivirus system operates in one of two modes, depending on the unit's available memory. If the free memory is greater than 30% of the total memory then the system is in non-conserve mode. If the free memory drops to less than 20% of the total memory, then the system enters conserve mode. When the free memory once again reaches 30% or greater of the total memory, the system returns to non-conserve mode.
Antivirus functionality and performance is impacted when the unit enters conserve mode. For more information, see the Fortinet Knowledge Base article "Antivirus failopen and optimization".
A FortiGate unit that continuously and frequently enters conserve mode may be under scaled for the type of network flows that are being scanned by it. You can do the following to alleviate the problem:
Note: You will have to reboot the FortiGate unit after having disabled the various features and services, in order to free up the memory.
Technical Note : Changing the TCP session TTL (time to live) on a FortiGate
FortiGuard updates fail on download (FortiGate)
Technical Note : Antivirus failopen and optimization ( conserve mode and proxy connection pools scen...
Technical Note: Maximum oversize threshold
FortiGate log message "FortiGate has reached connection limit for <n> seconds"
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2023 Fortinet, Inc. All Rights Reserved.