Professional Documents
Culture Documents
Troubleshooting
April 2016
Statistics->Health Monitoring->General
Statistics->System->Resources->CPU
All three CPU reports/graphs are generated from the same set
of data on ProxySG. This data is available in the persistent
data manager (PDM) statistics in a sysinfo and default
snapshots.
All three CPU reports/graphs show a single CPU percentage
On ProxySG 6.6.1.x or older (6.5, 6.4, etc.) the busiest CPU on multiple
CPU ProxySG platforms is shown in these reports/graphs
On ProxySG 6.6.2.x and newer an average of all the platforms CPUs is
shown in these reports/graphs
The CPU percentage shown is the average CPU over 60 seconds
Very short spikes in CPU usage might not show in these reports/graphs
Configurable CPU 0
HTTP and FTP
99%
89%
interval duration Object Store 10%
Access Logging 1%
CPUs listed with its Miscellaneous 1%
CPU usage CPU 1
TCPIP
22%
20%
(rounded up) DNS service 1%
Components shown
Most component names are meaningful
Two components commonly seen that need clarification:
Object store Kernel, Cache Engine, Storage
Miscellaneous Processing that does not fit into a main component
#conf t <enter>
#(config)diagnostics <enter>
#(config diagnostics)cpu-monitor ?
Viewing CPU Monitor output from the CLI must be done from
enable mode
Command to view CPU monitor is show cpu-monitor
Data is not updated #show cpu-monitor
until interval expires CPU Monitor:
Configured interval duration: 59 seconds
Time in interval Current interval complete in: 18 seconds
remaining also
displayed CPU 0
Console Agent
6%
3%
Miscellaneous 2%
CPU utilization
Current state
Once a CPU issue is found in the PDM data other types of data
can be analysed to find correlations. An example:
system:cpu-usage~hourly@Fri, 01 Apr 2016 00:08:00 UTC[07](60, 60): 9 9 9 9 9
9 9 9 9 9 9 9 10 9 9 9 9 9 9 9 12 9 10 9 10 9 10 9 9 9 9 9 9 9 9 9 9 9 9 9 9
10 9 9 9 9 9 9 9 12 10 9 50 90 100 46 10 10 9 9
users:current~hourly@Fri, 01 Apr 2016 00:08:00 UTC[07](60, 60): 1 0 1 1 1 0 0
0 1 0 1 0 0 1 1 0 0 0 0 0 1 0 0 0 1 0 0 0 0 0 1 0 1 0 1 1 0 0 0 0 1 0 0 0 1 0
0 0 0 0 1 0 3057 5932 6348 2680 1 0 0 0
Statistics->System->Resources->Memory Use:
TCPIPs memory usage over the last hour, static (this is OK):
1, TCPIP: 3358720, 3358720, 3358720, 3358720, 3358720, 3358720, 3358720, 3358
720, 3358720, 3358720, 3358720, 3358720, 3358720, 3358720, 3358720, 3358720,
3358720, 3358720, 3358720, 3358720, 3358720, 3358720, 3358720, 3358720, 33587
20, 3358720, 3358720, 3358720, 3358720, 3358720,
Current state
A leak is an ever
increasing value over
time.
Both Traffic Mix and Traffic History use the same service names
and proxy types.
Service name tracks bandwidth matching IPs or ports. Within
that traffic different proxies can process the traffic.
Explicit HTTP can contain HTTPS traffic within it
Proxy reports give better visibility into types of traffic processed
KB Article:
http://bluecoat.force.com/knowledgebase/articles/Solution/000024136
SSL interception on exception default mode in SGOS 6.2+
Add splash text to SSL interception on exception policy rule
Check the following when CPU pattern looks like general load:
Did something in the environment change that triggered the CPU?
More traffic moving from HTTP to HTTPS?
Cloud services being adopted?
Bandwidth being processed from Traffic Mix graphs. Is the proxy sizing
correct?
User counts and connections, are the values expected?
Statistics->System->Resources->Concurrent Users
TCP Users advanced URL: /TCP/users
Active sessions, clients accessing data that should be controlled?
Community where you can learn from and share your valuable
knowledge and experience with other Blue Coat customers
Research, post and reply to topics relevant to you at your own
convenience
Blue Coat Moderator Team ready to offer guidance, answer
questions, and help get you on the right track
Access at forums.bluecoat.com and register for an account
today!