Just a random idea: could it be triggered (or made much worse) due to fasttracking? Having it active does affect how NIC drivers work ...
I have yet to find a single person who has reported that Fastpath/Fasttrack works for them on their non-RouterBOARD hardware. I don't believe it works on x86, period, and given the diversity of third-party hardware out there, I don't believe MikroTik has any interest in making it work or supporting it on anything but MikroTik-branded products, and I believe that they have signalled as much in the past. You can add the rule, and the little checkbox under IP > Settings will show it is enabled, but the counters will not tick up, nor will there be a measurable performance difference.
Neither OPs of either thread posted a config export, but I would be surprised if either of them blindly added a Fasttrack action to their firewall rules, especially since the one in the other thread who hinted that the problem stopped happening for him never mentioned anything about Fasttrack. I suppose anything is possible, though, and that perhaps both of these people did so, and even that perhaps enabling Fasttrack on x86 does *something*, but being that its use is unsupported, the "something" it is doing is bad/buggy/"undefined behavior".
EDIT: I was just reading through the
CHR help page for an unrelated reason, and came upon this interesting note:
Fast Path is supported in RouterOS v7 for "vmxnet3" and "virtio-net" adapters.
RouterOS v6 does not support Fast Path.
This surprised me, since I could swear I'd tested this in the past.
So I decided to re-test it (with vmxnet3), and sure enough, Fastpath/Fasttrack
do work with the PV adapters (ROS 7.19.1).
Got me thinking that the last time I tested this, I must've had the VM configured with virtual E1000 adapters instead of vmxnet3 ones. So I changed my test VM interfaces from vmxnet3 to E1000, and FP/FT did indeed stop working at that point.
Anyway, the new(ish) Fastpath support with at least those two PV adapters is a pleasant surprise. But as far as I know, those are the only two adapters on x86 that Fastpath works with...which means you have to be running ROS virtualized instead of bare-metal *and* use PV drivers instead of either PCIe passthrough or SR-IOV to achieve it (short of somebody going through and testing a bunch of other supported adapters with SR-IOV support to see if any of them have undocumented Fastpath support).
