Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login
    Introducing Netgate Nexus: Multi-Instance Management at Your Fingertips.

    2100: constantly shows high CPU usage

    Scheduled Pinned Locked Moved Official Netgate® Hardware
    6 Posts 4 Posters 256 Views 6 Watching
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • N Offline
      netboy
      last edited by netboy

      Hi there , i have netgate 2100 max and the CPU usage is always very high > 90% most of the time.

      I do use pfBlockerNG and do not use VPN.

      Any help to troubleshoot this issue would be greatly appreciated

      I did use the shell command (top -a -o cpu) and discoverd the process ntopng consumes 95% of CPU and DISABLED it.

      Observered it went from "9% of your CPU is actually idle" to "51% of your CPU is actually idle"

      Is it OK to disable ntopng?

      SteveITSS GertjanG 2 Replies Last reply Reply Quote 0
      • SteveITSS Offline
        SteveITS Rebel Alliance @netboy
        last edited by

        @netboy it’s your choice? You or someone else installed it…? It’s a traffic monitoring program that happens to use a lot of resources and writes to disk a lot.

        To upgrade, select your branch in System/Update/Update Settings. When upgrading, allow 10-15 minutes to reboot, or more depending on packages, CPU, and/or disk speed.
        Only install packages for your version of pfSense.
        Upvote 👍 helpful posts!

        N 1 Reply Last reply Reply Quote 0
        • N Offline
          netboy @SteveITS
          last edited by

          @SteveITS Thx

          I have also discovered lighttpd_pfb consumes most of CPU. Can i disable this? My understanding is pfBlockerNG does not need this and the browsing experience will not change. If so , how to disable lighttpd_pfb?

          SteveITSS 1 Reply Last reply Reply Quote 0
          • SteveITSS Offline
            SteveITS Rebel Alliance @netboy
            last edited by

            @netboy said in 2100: constantly shows high CPU usage:

            lighttpd_pfb consumes most of CPU

            That's from pfBlocker. I think from the DNSBL block page. You could try setting DNSBL to one of the null block modes:
            92323c52-bcb3-4dfe-aeeb-062c068ac981-image.png

            To upgrade, select your branch in System/Update/Update Settings. When upgrading, allow 10-15 minutes to reboot, or more depending on packages, CPU, and/or disk speed.
            Only install packages for your version of pfSense.
            Upvote 👍 helpful posts!

            1 Reply Last reply Reply Quote 0
            • stephenw10S Online
              stephenw10 Netgate Administrator
              last edited by

              I'm surprised lighttpd would use much though. Unless it's being absolutely hammered by connection attempts. It's specially built to be light weight.

              1 Reply Last reply Reply Quote 0
              • GertjanG Offline
                Gertjan @netboy
                last edited by

                @netboy

                Set all your DNSBL Logging/blocking mode to "Null block (logging)":

                99d17329-6a3e-474b-8b18-1eb554b945fe-image.png

                or, if you want no stats whatsoever, select "Null block (no logging)".

                == what @SteveITS said.

                Btw : this won't stop the pfBlocker's web server, but a web server serving no pages does just one thing : sleeping.

                @netboy said in 2100: constantly shows high CPU usage:

                Is it OK to disable ntopng?

                ntopng is a 'data collector' and makes reports out of your Ethernet traffic.
                ntopng isn't installed by default. It's a extra tool, and it's known for it's huge CPU appetite and huge disk space needs. ntopng, and some others, are ok to use, but the next time you select a router device, go for big iron, and big RAM, and more disk space.
                Btw : pfBlockerng, and ntopng and others, does close to 'nothing' when there is no (or way less) Ethernet traffic. So, that is also a solution 😊

                No "help me" PM's please. Use the forum, the community will thank you.

                1 Reply Last reply Reply Quote 0
                • First post
                  Last post
                Copyright 2026 Rubicon Communications LLC (Netgate). All rights reserved.