Created on 11-02-2022 03:11 AM
have Fortigate OS version 7.2.2 running on AWS using t2.small instance, it periodically has a high CPU, this ccurs at time there's no actual load on the firewall, how to slove this???
I have the following log:
########## script name: autod.57 ##########
Created on 11-02-2022 09:31 AM
diagnose sys top command will show you top CPU usage by process name. Let us know what shows up here and we can further diagnose it.
Created on 11-06-2022 01:50 AM
I'm still trying to get results from "diagnose sys top", but think it has something to do with wad process.
Created on 11-06-2022 08:09 AM
but think it has but think it has something to do with wad process.
That would make sense given the process is crashing.
How long does the CPU spike last for?
Created on 11-06-2022 11:24 PM
Thanks, Graham, for your responses.
the spike last only for few minutes and then everything works fine, the biggest issue is that there's no high load on the device leading to such behavior. I tired upgrading OS as this problem reported by some users but still no luck.
Created on 11-15-2022 04:09 AM
This is the specific process "wad-http(s)-mapi" causing the High CPU.
Created on 11-15-2022 08:50 AM
Do you have any policies doing proxy-based (not flow-based) inspection?
Do you have any VIPs doing DNAT?
You say there is no "high load" when it happens but what is the traffic load during the CPU spike? Is it different than baseline?
Created on 11-16-2022 09:50 PM Edited on 11-16-2022 09:50 PM
Check your CPU credits on the AWS monitoring of the EC2 instance. You may have too small of an instance. Usually we go c5.large as a minimum. As per FGT guide for AWS instance sizing.
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2023 Fortinet, Inc. All Rights Reserved.