How to check File Descriptor (FD's) usage from the CLI

To Monitor the usage of File Descriptors for the Processes on the Firewall.

• Next Gen Firewalls (NGFW)
• Supported PAN-OS

The command ">debug system process-info" will provide the information as shown below:

admin@Lab> debug system process-info

Total num processes: 39

Name                   PID      CPU%  FDs Open   Virt Mem     Res Mem      State
pppoe                  6170     0     7          446588       30952        S
ha_agent               6164     0     4          238284       28716        S
satd                   6165     0     12         495596       42244        S
l2ctrl                 6163     0     8          519224       28524        S
websrvr                6135     0     14         375676       30068        S
varrcvr                6162     0     24         1495952      73236        S
ifmgr                  6161     0     4          237036       27696        S
sysd                   3879     0     192        163296       12076        S
l3svc                  13149    0     13         375020       31300        S
redis_useridd          5922     0     8          33296        7872         S
ehmon                  4228     0     5          83836        6836         S
devsrvr                5760     0     13         1123620      258640       S
mgmtsrvr               5896     0     50         2038776      903404       S
ikemgr                 6156     0     11         618124       45796        S
sslvpn_ngx             6345     0     17         386232       29020        S
cdb                    6573     0     21         1167772      124792       S
sslvpn                 6155     0     22         439972       52568        S
monitor                4112     0     16         149648       17456        S
dhcp                   6167     0     8          515684       30336        S
cord                   5759     0     16         583820       74652        S
ha-sshd                4613     0     5          42140        2624         S
sysdagent              3948     0     9          1207616      32832        S
masterd                3859     0     19         295360       32548        S
routed                 6171     0     17         931196       58588        S
web_backend            6142     0     13         528012       39248        S
crypto                 4531     0     11         731028       37476        S
sshd                   4682     0     5          42140        2840         S
useridd                5766     0     27         614676       223164       S
chasd                  4229     0     8          588672       27480        S
snmpd                  6328     0     15         281352       22372        S
dnsproxy               6168     0     17         945140       78448        S
dagger                 3947     0     12         543360       50360        S
keymgr                 6160     0     11         580756       33984        S
authd                  6172     0     13         521284       53620        S
logrcvr                6157     0     48         4241892      884780       S
cp-console             4388     0     5          21992        4596         S
sslmgr                 6166     0     15         1257008      41308        S
rasmgr                 6159     0     9          619048       40272        S
mdadm                  4608     0     4          4608         788          S

Totals                         0     728        25484732     3523512

Note:

• This command is not available from the Panorama CLI however you can still check the File Descriptors usage for a particular process or all processes by using command-line utilities such as grep and less for mp-monitor.log files. 
• Apart from showing the number of File Descriptors open usage, This command will list all the process's names along with CPU Utilization, Virtual Memory, Resident Memory Utilization, and the State of the process.
• By default, every process has a maximum limit of 1024 descriptors to open with an exception for Elastic search which has a 65535 maximum limit.