Help
FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
Adryan_you
Staff
Staff

Created on ‎08-08-2024 11:28 PM Edited on ‎11-06-2024 10:49 PM By Moderator

Article Id 331783

Troubleshooting Tip: High CPU usage on bcm.user after upgrade to 7.0.x

Description This article describes how to resolve high CPU issues on bcm.user after upgrading to 7.0.x.
Scope FortiGate.
Solution

After upgrading FortiGate firmware from 6.4.x to 7.0.x, the high CPU issue occurred.

 

  1. Check the FortiGate CPU usage:

    get sys performance status

  2. If the softIRQ stats are high, that indicates network looping may occur.

 softirq.png

 

  1. Check and confirm the user has switched the interface config.

    config system switch-interface
    show

  2. Enable STP-Forward in all the interfaces that are under the switch-interface setting:

    config sys interface

        edit <port>

            set stpforward enable

    end

  3. Check the FortiGate CPU again. The 'softIRQ' stats should drop.

  1. bcm.user process is in charge of controlling the internal switch of the equipment. This process needs to run some routines to keep the equipment kernel updated with information on the link statuses as well as statistical data in real-time internally (which can be used for new functionalities in versions 7.XX), so a consumption between 10-20% in a core is expected.
1955
Suggest New Article
Article Feedback
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2025 Fortinet, Inc. All Rights Reserved.