hi,
i just moved a new VDOM to a fortigate and observing CPU and other stats.
i noticed the 'global' VDOM spikes to above 90% over 10 min period.
but it looks 'normal' if it's over 24 hour period.
tried to run some CLI commands as below.
can someone advise if what's the "nice" 90% plus meaning here?
i also observe "voipd" with a number "95.2" beside it. what does this also mean? is this a voip DOS attack?
what other CLI commands can i use to trace other high CPU talker?
do i need to go each VDOM and check CPU?
(global) # get system performance status
CPU states: 3% user 3% system 0% nice 92% idle 0% iowait 0% irq 2% softirq
CPU0 states: 0% user 0% system 0% nice 97% idle 0% iowait 0% irq 3% softirq
CPU1 states: 8% user 7% system 0% nice 82% idle 0% iowait 1% irq 2% softirq
CPU2 states: 40% user 39% system 0% nice 18% idle 0% iowait 1% irq 2% softirq
CPU3 states: 0% user 0% system 0% nice 97% idle 0% iowait 0% irq 3% softirq
CPU4 states: 0% user 0% system 0% nice 96% idle 0% iowait 1% irq 3% softirq
CPU5 states: 0% user 0% system 0% nice 99% idle 0% iowait 0% irq 1% softirq
CPU6 states: 0% user 0% system 0% nice 99% idle 0% iowait 0% irq 1% softirq
CPU7 states: 3% user 0% system 0% nice 93% idle 0% iowait 1% irq 3% softirq
CPU8 states: 0% user 0% system 0% nice 99% idle 0% iowait 0% irq 1% softirq
CPU9 states: 0% user 0% system 0% nice 99% idle 0% iowait 0% irq 1% softirq
CPU10 states: 2% user 0% system 0% nice 97% idle 0% iowait 0% irq 1% softirq
CPU11 states: 0% user 0% system 0% nice 98% idle 0% iowait 0% irq 2% softirq
CPU12 states: 0% user 0% system 0% nice 97% idle 0% iowait 0% irq 3% softirq
CPU13 states: 0% user 0% system 0% nice 97% idle 0% iowait 0% irq 3% softirq
CPU14 states: 0% user 0% system 0% nice 98% idle 0% iowait 0% irq 2% softirq
CPU15 states: 1% user 1% system 0% nice 96% idle 0% iowait 0% irq 2% softirq
Memory: 24720020k total, 8184684k used (33.1%), 15810920k free (64.0%), 724416k freeable (2.9%)
Average network usage: 677027 / 679541 kbps in 1 minute, 708103 / 710748 kbps in 10 minutes, 697432 / 700174 kbps in 30 minutes
Maximal network usage: 841017 / 843685 kbps in 1 minute, 880259 / 882819 kbps in 10 minutes, 890608 / 893310 kbps in 30 minutes
Average sessions: 144121 sessions in 1 minute, 142122 sessions in 10 minutes, 144300 sessions in 30 minutes
Maximal sessions: 145129 sessions in 1 minute, 147030 sessions in 10 minutes, 164704 sessions in 30 minutes
Average session setup rate: 1123 sessions per second in last 1 minute, 1147 sessions per second in last 10 minutes, 1182 sessions per second in last 30 minutes
Maximal session setup rate: 1250 sessions per second in last 1 minute, 1430 sessions per second in last 10 minutes, 2813 sessions per second in last 30 minutes
Average NPU sessions: 95363 sessions in last 1 minute, 95996 sessions in last 10 minutes, 97069 sessions in last 30 minutes
Maximal NPU sessions: 95918 sessions in last 1 minute, 98758 sessions in last 10 minutes, 108089 sessions in last 30 minutes
Average nTurbo sessions: 0 sessions in last 1 minute, 0 sessions in last 10 minutes, 0 sessions in last 30 minutes
Maximal nTurbo sessions: 0 sessions in last 1 minute, 0 sessions in last 10 minutes, 0 sessions in last 30 minutes
Virus caught: 0 total in 1 minute
IPS attacks blocked: 0 total in 1 minute
Uptime: 292 days, 5 hours, 17 minutes
diagnose sys top
Run Time: 292 days, 5 hours and 19 minutes
3U, 0N, 2S, 93I, 0WA, 0HI, 2SI, 0ST; 24140T, 15424F
voipd 30566 R 95.2 0.2 5
bcm.user 2253 S < 7.1 0.5 10
cid 3970 S 3.5 1.4 3
miglogd 4166 S 0.5 0.6 6
miglogd 4163 S 0.3 0.6 9
miglogd 4159 R 0.3 0.6 13
miglogd 4165 S 0.3 0.6 7
miglogd 4160 S 0.3 0.6 12
node 3900 S 0.3 0.5 14
httpsd 31424 S 0.3 0.1 10
sessionsync 4700 S 0.3 0.0 2
miglogd 4161 R 0.1 0.6 11
miglogd 4164 S 0.1 0.6 8
miglogd 4162 S 0.1 0.6 10
forticron 3886 S 0.1 0.5 10
hasync 3906 S < 0.1 0.3 4
dnsproxy 3929 S 0.1 0.2 8
locallogd 3903 S 0.1 0.2 0
hatalk 3905 S < 0.1 0.1 12
wad_usrinfohist 3948 S 0.1 0.0 7
