- Forums
- Knowledge Base
- Customer Service
- FortiGate
- FortiClient
- FortiAP
- FortiAnalyzer
- FortiADC
- FortiAuthenticator
- FortiBridge
- FortiCache
- FortiCarrier
- FortiCASB
- FortiConnect
- FortiConverter
- FortiCNP
- FortiDAST
- FortiDDoS
- FortiDB
- FortiDNS
- FortiDeceptor
- FortiDevSec
- FortiDirector
- FortiEDR
- FortiExtender
- FortiGate Cloud
- FortiGuard
- FortiHypervisor
- FortiInsight
- FortiIsolator
- FortiMail
- FortiManager
- FortiMonitor
- FortiNAC
- FortiNAC-F
- FortiNDR (on-premise)
- FortiNDRCloud
- FortiPAM
- FortiPortal
- FortiProxy
- FortiRecon
- FortiRecorder
- FortiSandbox
- FortiSASE
- FortiScan
- FortiSIEM
- FortiSOAR
- FortiSwitch
- FortiTester
- FortiToken
- FortiVoice
- FortiWAN
- FortiWeb
- Wireless Controller
- RMA Information and Announcements
- FortiCloud Products
- ZTNA
- 4D Documents
- Customer Service
- Community Groups
- Blogs
Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
- Fortinet Community
- Forums
- Support Forum
- where can I check this error?
Options
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Mute
- Printer Friendly Page
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
where can I check this error?
Earlier today, memory on my FT-60 went to around 86%, which effectively kills www/ftp access (dns and e-mail we' re still functioning though). I know running AV/AS and other features kills the memory on these, and since we bought the unit specifically for this function, turning it off isn' t something I want to do.
In any case, here' s the system conserve mode error that popped up in my inbox:
type=event subtype=system pri=critical vd=root service=nntp sysconserve=on total=123 free=9 entermargin=10 exitmargin=20 msg=" The system has entered system conserve mode"nntp? I have nothing in regards to nntp checked off or otherwise scanned on the unit. I ended up having to reset the unit in order to regain www/ftp functionality. thoughts on where to look, so I can keep this from happening again? Thanks everyone :)
Rick Payton, IT Support
Morikawa & Associates
http://www.mai-hawaii.com/
FortiGate-60 build 726 (retired)
FortiGate-60B v4.0 build 328 MR2 Patch 8
FortiAnalyzer-100B v4.0 build 513 MR3
Rick Payton, IT Support Morikawa & Associates http://www.mai-hawaii.com/
FortiGate-60 build 726 (retired) FortiGate-60B v4.0 build 328 MR2 Patch
8 FortiAnalyzer-100B v4.0 build 513 MR3
4 REPLIES 4
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
I don' t think NNTP crashed your unit. It' s just your equipment was overwhelmed by your network activity:
- the equipment is too small for your network
- there was a peak in network activity
- you have a virus in your network that generates a lot of traffic, etc.
The most expensive and scarce resource for man is time, paradoxically, it' s infinite.
The most expensive and scarce resource for man is time, paradoxically,
it' s infinite.
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
I don' t think NNTP crashed your unit. It' s just your equipment was overwhelmed by your network activity: - the equipment is too small for your networkThis caught my eye - is there a " rating" for how many devices the various units can handle? Right now, it' s protecting 13 workstations 6 laptops 11 servers 6 network printers (one of which runs an embedded NT 4.0) While I doubt that will overwhelm anything, we DO host our own e-mail, www, and ftp servers. I know our ftp servers get hit hard (bots trying to guess the non existant " Administrator" account & password), and we get our own share of spam via both connections. So then ... is it possible the unit is just overloaded? A peak in network activity, that could easily be attributed to us hosting our own services. If that' s the case, how can I recover without logging into the unit and resetting it? I also checked the entire network this morning for any potential virus - we also run Symantec Endpoint Protection (I' d rather have stayed with their " Corporate AV, but that' s a different matter), and I rechecked it' s running on all of our workstations & servers. Thanks for the response laf!
Rick Payton, IT Support
Morikawa & Associates
http://www.mai-hawaii.com/
FortiGate-60 build 726 (retired)
FortiGate-60B v4.0 build 328 MR2 Patch 8
FortiAnalyzer-100B v4.0 build 513 MR3
Rick Payton, IT Support Morikawa & Associates http://www.mai-hawaii.com/
FortiGate-60 build 726 (retired) FortiGate-60B v4.0 build 328 MR2 Patch
8 FortiAnalyzer-100B v4.0 build 513 MR3
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Not much of a network for the FG 60. My only concern could be your 11 servers, don t know how many requests they re processing....
Anyway if you re to encounter this, you could use:
execute router restart or
diagnose sys session filter vd -1
diagnose sys session clear .
Also make two week survey using SNMP and see the processor and memory usage during a work day.
Off course there may be other solutions; how' s your Linux? We could try using some bots that will inform us about the traffic and session numbers offering us some graphic reports.
The most expensive and scarce resource for man is time, paradoxically, it' s infinite.
The most expensive and scarce resource for man is time, paradoxically,
it' s infinite.
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
I didn' t think that was too much network for the FT-60 either. The 60 blocks a ton of spam from both of our links (in a 29 day period - since our last reboot - it blocked over 9000 pieces of spam), but I know our FTP servers are just getting hammered by bots guessing the " administrator" password - before this reboot was were up to almost 60,000 ftp sessions in the last 29 day period.
My Linux Fu is slowly coming along though. We run ESXi 3.5 on 2 different servers, and I still got memory / cpu / disc space to spare (I admit to falling into the " lets make a lot of virtual machines because we can" category initially - some of the excess servers are getting phased out). I' ve looked at mrtg and cacti, but they' re way over my head currently.
I guess now would be a good time to *really* sit down and learn it.
Thanks again for the tips laf. Got any advice on a good snmp program? Since the last time I attempted to run cacti and mrtg, I' ve enabled snmp on every Windows computer in the network as well, in hopes of monitoring my Exchange server.
Rick Payton, IT Support
Morikawa & Associates
http://www.mai-hawaii.com/
FortiGate-60 build 726 (retired)
FortiGate-60B v4.0 build 328 MR2 Patch 8
FortiAnalyzer-100B v4.0 build 513 MR3
Rick Payton, IT Support Morikawa & Associates http://www.mai-hawaii.com/
FortiGate-60 build 726 (retired) FortiGate-60B v4.0 build 328 MR2 Patch
8 FortiAnalyzer-100B v4.0 build 513 MR3
Related Posts
- SSLVPN login fails before 7AM EDT 71 Views
- Viewing logs Virtual IPs 62 Views
- GeoIP Block Not working 111 Views
- issues deploying fortinet free licence 100 Views
- FortiGate GRE Tunnel with Dynamically obtain... 91 Views
Labels
-
FortiGate
6,481 -
FortiClient
1,292 -
5.2
801 -
5.4
639 -
FortiManager
563 -
6.0
416 -
FortiAnalyzer
412 -
5.6
362 -
FortiSwitch
331 -
FortiAP
330 -
FortiClient EMS
259 -
6.2
251 -
FortiMail
239 -
FortiAuthenticator v5.5
234 -
5.0
196 -
FortiWeb
149 -
6.4
128 -
FortiNAC
103 -
FortiGuard
102 -
FortiGateCloud
86 -
FortiSIEM
86 -
FortiCloud Products
82 -
FortiToken
69 -
IPsec
69 -
Customer Service
69 -
4.0MR3
64 -
Wireless Controller
58 -
SSL-VPN
57 -
FortiProxy
44 -
FortiADC
42 -
Fortivoice
41 -
FortiEDR
38 -
FortiGate v5.4
34 -
FortiDNS
34 -
FortiExtender
31 -
FortiSandbox
30 -
FortiSwitch v6.4
28 -
SD-WAN
24 -
FortiConnect
23 -
FortiWAN
22 -
Firewall policy
22 -
High Availability
21 -
FortiConverter
21 -
VLAN
18 -
FortiPortal
17 -
ZTNA
16 -
FortiSwitch v6.2
16 -
FortiGate v5.2
16 -
FortiMonitor
14 -
Certificate
14 -
DNS
13 -
FortiDDoS
13 -
Routing
12 -
FortiCASB
12 -
SAML
11 -
BGP
11 -
Interface
11 -
Logging
11 -
FortiGate v5.0
10 -
FortiRecorder
10 -
VDOM
10 -
FortiWeb v5.0
9 -
LDAP
9 -
FortiManager v5.0
9 -
4.0MR2
9 -
RADIUS
8 -
Traffic shaping
8 -
Virtual IP
8 -
FortiAuthenticator
8 -
RMA Information and Announcements
7 -
FortiSOAR
7 -
fortilink
7 -
FortiAnalyzer v5.0
7 -
NAT
7 -
FortiGate v4.0 MR3
7 -
Admin
7 -
4.0
7 -
SSID
6 -
Authentication
6 -
Fortigate Cloud
6 -
IP address management - IPAM
6 -
SSL SSH inspection
5 -
Security profile
5 -
Traffic shaping policy
5 -
FortiBridge
5 -
SNMP
5 -
SSO
5 -
Application control
5 -
FortiManager v4.0
5 -
Static route
5 -
FortiDirector
4 -
WAN optimization
4 -
Web application firewall profile
4 -
DNS Filter
4 -
FortiTester
4 -
FortiCarrier
4 -
FortiCache
4 -
OSPF
4 -
3.6
4 -
FortiScan
4 -
Proxy policy
4 -
IPS signature
3 -
packet capture
3 -
FortiToken Cloud
3 -
Automation
3 -
Intrusion prevention
3 -
DoS policy
3 -
FortiDB
3 -
Port policy
3 -
FortiDeceptor
2 -
FortiInsight
2 -
Antivirus profile
2 -
VoIP profile
2 -
Traffic shaping profile
2 -
Web profile
2 -
FortiAP profile
2 -
FortiAI
2 -
FortiHypervisor
2 -
Netflow
2 -
trunk
2 -
TACACS
1 -
4.0MR1
1 -
NAC policy
1 -
SDN connector
1 -
Users
1 -
Subscription Renewal Policy
1 -
FortiCWP
1 -
FortiNDR
1 -
FortiPAM
1 -
Web rating
1 -
Application signature
1 -
Authentication rule and scheme
1 -
Multicast routing
1 -
FortiManager-VM
1 -
Zone
1 -
Fabric connector
1 -
Internet Service Database
1 -
Fortinet Engage Partner Program
1 -
Explicit proxy
1 -
System settings
1
Broad. Integrated. Automated.
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Security Research
Company
News & Articles
Copyright 2024 Fortinet, Inc. All Rights Reserved.