RX packets overrun for Fortinet

Vendor

Fortinet

Description

Indeni tracks the number of packets that had issues and alerts if the ratio is too high.

Remediation Steps

Packet overruns usually occur when there are too many packets being inserted into the port's memory buffer, faster than the rate at which the kernel is able to process them.

1. Run "diag hardware deviceinfo nic " command to display a list of hardware related error names and values. Review the next link for more details: http://help.fortinet.com/fos50hlp/54/Content/FortiOS/fortigate-toubleshooting-54/troubleshooting_tools.htm

2. Run command "fnsysctl cat /proc/net/dev" to get a summary of the interface statistics.

3. Check for speed and duplex mismatch in the interface settings on both sides of a cable, and check for a damaged cable. Review the next link for more info: http://kb.fortinet.com/kb/documentLink.do?externalID=10653

How does this work?

This script logs into the FortiGate using SSH and retrieves the output of the "fnsysctl ifconfig" FortiOS hidden command. The output includes all the interface related information and statistics.

Why is this important?

This script logs into the FortiGate using SSH and retrieves the output of the "fnsysctl ifconfig" FortiOS hidden command. The output includes all the interface related information and statistics.

Without Indeni how would you find this?

An admin would need to log into the Fortinet firewall and manually review the interface statistics.


View Source Code