I have a mikrotik ccr 1036-8g-2s+ with about 10 filter rule and per your datasheet on https://mikrotik.com/product/CCR1036-8G-2Splus
in routing mode with 25 filter rule 1036 can handle 1.5gbps bps and 3m pps but the issue here is when i receive DDOS attack my CPU usage is %100,
the DDoS i received had 1m PPS and about 1gbps bps and i have analyzed the traffic, they were with spoofed IPs, they were on UDP and sometimes GRE protocol, they were on one DST IP.
as a note my uplinks are 2x 10gbps so I have 20gbps totally.
This is what i have on my router:
1. 6 enabled Ip Firewall Filter rules
2. 1 Mangle Rules
3. 9 enable ip firewall raw rules
4. bgp with no full table
5. 100 Vlans
would you tell me, why does my cpu usages is %100 when i receive this amount ? its opposite of datasheet.
any idea to solution for solve this?