have Fortigate OS version 7.2.2 running on AWS using t2.small instance, it periodically has a high CPU, this ccurs at time there's no actual load on the firewall, how to slove this???
I have the following log:
Description: | ########## script name: autod.57 ########## |
Nominating a forum post submits a request to create a new Knowledge Article based on the forum post topic. Please ensure your nomination includes a solution within the reply.
diagnose sys top command will show you top CPU usage by process name. Let us know what shows up here and we can further diagnose it.
I'm still trying to get results from "diagnose sys top", but think it has something to do with wad process.
@Mohammed-Mustafa wrote:
but think it has but think it has something to do with wad process.
That would make sense given the process is crashing.
How long does the CPU spike last for?
Thanks, Graham, for your responses.
the spike last only for few minutes and then everything works fine, the biggest issue is that there's no high load on the device leading to such behavior. I tired upgrading OS as this problem reported by some users but still no luck.
Created on 11-15-2022 04:09 AM
This is the specific process "wad-http(s)-mapi" causing the High CPU.
Do you have any policies doing proxy-based (not flow-based) inspection?
Do you have any VIPs doing DNAT?
You say there is no "high load" when it happens but what is the traffic load during the CPU spike? Is it different than baseline?
Check your CPU credits on the AWS monitoring of the EC2 instance. You may have too small of an instance. Usually we go c5.large as a minimum. As per FGT guide for AWS instance sizing.
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
User | Count |
---|---|
1518 | |
1018 | |
749 | |
443 | |
209 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.