Fortigate with high CPU time

I recently had an incident with a customer firewall where the CPU load averaged at about 93% as seen from the GUI. The network monitoring tools (that is Smokeping) also reported higher response time than normal even though network throughput seemed to be normal. There were no indications about any packet loss in the network during the period.

The solution used was to boot the firewall. The Fortigate firewalls seems not to have an easy way to find out what processes use CPU time.

The customer runs two firewalls in a HA configuration. As so there were almost no downtime during the reboot. I had 6 packets that did not get through during the reboot.

Tags

• Fortigate
• Fortinet