i'm seeing a very bizarre performance issue on my mikrotik hEX PoE. running latest firmware 6.45.5. (issue happened before this firmware too)
simple ipsec vpn between 2 network. i'm going to spare the details until proven needed.
the traffic flows, but under normal condition, the connection init is super slow (~10 seconds to open ssh channel, then lags even typing the command)
here's an example:
erick@Erick$ time ssh 10.10.3.163 cal
Here comes the odd part. if i turn on packet sniffer to watch 10.10.3.163 packets, everything end up fast!
Can someone help me understand what's going on? what would change with the packet sniffer ON ?
does it bypass firewall? does it bypass NAT?
i know if i do notrack between the 2 network, it'd be fast. but i do need to netmap the subnet, so i can't do that with this scenario.
i have fasttrack on, but i suspect these packets don't hit it?