Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
231
Views
3
Helpful
5
Replies

FMCv 7.2.5.1: High CPU load - how to troubleshoot?

swscco001
Level 3
Level 3

‎04-23-2024 11:51 PM

Hello everybody,

our customer has a FMCv running sugg. rel. 7.2.5.1 and has a high CPU load of approx. 97%.
(see attached screen dump).

The VM has 4 CPUs, 32GB RAM and 250GB HDD.

The FMC is managing a HA of two Firepower 1120 running rel. 7.2.5.

A FMC reboot does not solve the issue.

A "Run All" in the Health Monitor does not solve the issue.

The DBCheck.pl does not show any error (see attached output).

What could be the reason of the high CPU load and how can
we get rid of?

Thanks a lot for every hint!




Bye
R.


Preview file
15 KB
Preview file
91 KB
0 Helpful
5 Replies 5

Jon Are Endrerud
Level 1
Level 1

‎04-25-2024 05:10 AM

When logging into CLI --> expert, what is the "top" command say about the processes using cpu ?

Please rate as helpful, if that would be the case. Thanx

Marvin Rhoads
Hall of Fame
Hall of Fame

‎04-25-2024 06:37 AM

@swscco001  In addition to the "top" command suggested by @Jon Are Endrerud , you can also check the Events/Second coming in to the FMC in the Health Monitor (may need to switch to the new light UI under your user profile).

Marius Gunnerud
VIP
VIP

‎04-26-2024 04:14 AM

I have seen a few of these High CPU issues on post 7.2.x versions of FTD.  In the worst cases we had to reload the FTD as the CLI was unresponsive.  In each of these scenarios the underlying issue was always a bug and is fixed with an upgrade to newer version.

Other possible scenarios could be excessive logging and IPS that is triggering on a lot of packets (not necessarily because of an attack).

Commands you could use to identify what is  causing the high CPU:

show cpu core all

show processes cpu-usage non-zero

show cpu usage-hog

Expert mode: top

--
Please remember to select a correct answer and rate helpful posts

swscco001
Level 3
Level 3

‎04-29-2024 01:43 AM

Hello everybody,

with the FMC upgrade to rel. 7.2.6 the high CPU load disappeared.

Thanks a lot!



Bye
R.

0 Helpful

Marius Gunnerud
VIP
VIP
In response to swscco001

‎04-29-2024 01:46 AM

I am glad the upgrade to 7.2.6 solved the issue for you.  However, for you and anyone else that finds this post, be aware of the following bug that can cause the FTD to go into a boot loop if you are using SNMP.  

https://bst.cloudapps.cisco.com/bugsearch/bug/CSCwi63113

 

--
Please remember to select a correct answer and rate helpful posts
0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card