not having a established/related rule makes connections slow (CCR)

Hi Guys.

Have my CCR with around 100 rules, quite a few subnets and routing.

I had an established rule close to the top as I wanted to avoid processing the rules. However, now I need to constantly ensure the rules are all processed. So I disabled this rule. From here on, all new connections/existing connections establish very slowly. Like there is a 10 second lag…

I can re-produce this everytime by disabling and enabling the rule.

Any ideas? CCR on bugfix only.

Anyone? Easily reproducible.

Of course when your router has to process all rules for every packet it can become slower, but not likely it will
cause a 10 second delay. More likely is that your rules somehow drop packets that are normally matched by
the established/related rule and that this causes the delay.
Put a log on your drop or reject rules and investigate what is happening.