How to tell when my Fortigate 60 needs to be upgraded because of load problems

I have a Fortigate 60 firewall. I'd like to know how I can tell when I'd need to upgrade the firewall and when it is sufficient for my use.
1. Are CPU utilization and memory utilization the only things I should look at?
2. What are the limits for the CPU and memory utilization till which I am safe?
3. My CPU utilization is hardly 2-3 percent but my memory utilization is about 53% (in my current system) without the antivirus being on. Is that too high?

If someone can answer these questions it'd be of great help.

Who is Participating?

[Product update] Infrastructure Analysis Tool is now available with Business Accounts.Learn More

I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

For any firewall CPU/Memory and traffic form the first basis to decide if the firewall can adequately handle traffic; other than this based on business requirements you might also look for other features like VPN, content filtering, anti-virus, anti-spam, user licenses, IDP (if an option).

The rule of the thumb is if the firewall is not dropping packets and is not a performance bottleneck in your network then it is good to stay there. Mere 53% memory utilization does not indicate anything; you should look if that the is peak load or average load. Also, on weekends when the traffic should be low, what are the memory consumption trends. Finally, if everything appears normal and there are no alarms then you need not worry at this time. You might want to keep monitoring the CPU/memory utilization to see if that is actually affecting performance.
I would say typically upto 80% memory consumption under load conditions is fine; anything above that if is averaged then you should observe to see any performance degradation.

Hope this helps.

Thank you.

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
orazen11Author Commented:
Great. That sounds good. I was under the same impression but my vendor has been telling me to upgrade as according to him if the Antivirus is turned on and it reaches 70% utilization it'll be in dangerous zone. 53% memory utilization I mentioned in my previous message was the average utilization and the peak also stays close to that. The CPU utilization stays close to 3% and number of sessions ranges between 100 to 14000. I am unable to understand how such a wide range (the number of sessions drops drastically when I refresh the number of sessions) but as long as it is within the limit I think it should be fine.

So as I understand there are three things I should be looking at (please correct me if I am wrong):
1. CPU utilization (average and peak)
2. Memory utilization (average and peak)
3. Number of sessions (average and peak)

If these are within limits then I don't need to upgrade. Right?

You are correct; I would say go ahead and enable Anti-virus on the device; if you see any performance degradation and the bottleneck is memory then upgrade as your vendor is suggesting. If there is no impact and the performance is good then nothing to worry! :)
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Hardware Firewalls

From novice to tech pro — start learning today.