Hi,

I`m interesting in CCR1016-12G model and have few question about it.
First of all I have some problems with DDOS. Situation is like this:

Attackers comes from unique IP address and normally 100k-400k pps ~50mbps. Sometime pps jumps to 1m. Every IP sends only 1 packet for initialize new connection. So it looks like big part of the world are trying to say hello to me
I had installed RouterOS (demo mode) on x86 system and made some screen shots.
Sometime load jumps to 400 mbps
The problem is IRQ load. At this type of attack Internet is just cut out. RPS likely is turned on. But the first Ethernet port IRQ works only on one core. x86 system problem ?

Does CCR1016-12G can handle it? Does it have no problem with IRQ load balancing? Or maybe enough to have RB1100Hx2?

CCR 1016-12G - bridge eth2 and eth3 ports. Firewall with 28 rules (5 actives on attack). 600,000 pps, 250 mbps, cpu 100%, rps active on eth2. Profile shows firewall active at 95%. Need more power.

CCR 1016-12G - bridge eth2 and eth3 ports. Firewall with 28 rules (5 actives on attack). 600,000 pps, 250 mbps, cpu 100%, rps active on eth2. Profile shows firewall active at 95%. Need more power.

depending on what kind of rules you have. we plan to bring massive firewall performance upgrade for the CCR in one of the next RouterOS versions