Troubleshooting – Patrick Marc's Networks

Recently, we encountered significant CPU and memory utilization spikes on one of our Fortigate Firewalls. Despite consistently handling around 1.5 million sessions for several months without any problems, the situation took a turn for the worse. The firewall became unresponsive through the Command Line Interface (CLI), and at that time, we hadn't configured a dedicated …

Continue reading "FortiGate – High CPU and Memory load"

2023-09-282023-11-04

Tcpdump examples

Basic Packet Capture tcpdump -i eth0 This captures and displays packets on interface eth0. Capture Packets from a Specific Port tcpdump -i eth0 port 80 This captures packets on port 80 (HTTP traffic) on eth0. Capture Packets with a Specific Host as Source or Destination tcpdump -i eth0 host 192.168.1.100 This captures packets either from …

Continue reading "Tcpdump examples"

2023-09-252023-11-04

Fortigate – IPSec Troubleshooting – VPN Analyse

Force VPN Tunnels to the CPUFirst you need to force the Encrypted traffic over the CPU. Take packet captures from the GUI It is somehow counter intuitive but we need to take care that the IPSec session is not offloaded into Hardware. This basically the Opposite as described in Ensuring IPSec traffic is offloaded for …

Continue reading "Fortigate – IPSec Troubleshooting – VPN Analyse"

Tag: Troubleshooting

Check Point – Troubleshooting

FortiGate – High CPU and Memory load

Tcpdump examples

Fortigate – IPSec Troubleshooting – VPN Analyse

Make a one-time donation

Make a monthly donation

Make a yearly donation