Использование ЦП в очередях RB1200

Я недавно обновился с RB750G на RB1200 и перенес конфигурацию. Все очень просто: всего 5 портов в коммутаторе, порт, подключенный к кабельному модему, получает адрес через DHCP и некоторые правила брандмауэра. Однако загрузка ЦП неожиданно высокая. Например, когда я прогоняю через RB1200 поток данных примерно в 30 Мбит/с (используя http://www.speedtest.net), загрузка ЦП достигает 20%, причем 11% из них приходится на "очередь". Это больше, чем при использовании RB750G, что кажется нелогичным. Есть ли какие-то настройки, которые я упустил, может быть?

Вот фрагменты конфигурации:

`/interface ethernet`

```
set 0 arp=enabled auto-negotiation=yes disabled=no full-duplex=yes l2mtu=1600 mac-address=00:0C:42:D2:73:1E mtu=1500 name=ether10 speed=100Mbps
set 1 arp=enabled auto-negotiation=yes disabled=no full-duplex=yes l2mtu=1600 mac-address=00:0C:42:D2:73:1F mtu=1500 name=ether9 speed=100Mbps
set 2 arp=enabled auto-negotiation=yes disabled=no full-duplex=yes l2mtu=1600 mac-address=00:0C:42:D2:73:21 mtu=1500 name=ether7 speed=100Mbps
set 3 arp=enabled auto-negotiation=yes disabled=no full-duplex=yes l2mtu=1600 mac-address=00:0C:42:D2:73:20 mtu=1500 name=ether8 speed=100Mbps
set 4 arp=enabled auto-negotiation=yes disabled=no full-duplex=yes l2mtu=1420 mac-address=00:0C:42:D2:73:22 mtu=1500 name=ether6-gateway speed=100Mbps
set 9 arp=enabled auto-negotiation=yes bandwidth=unlimited/unlimited disabled=no full-duplex=yes l2mtu=1598 mac-address=00:0C:42:D2:73:27 master-port=none mtu=1500 name=\
   ether1-master-local speed=100Mbps
set 5 arp=enabled auto-negotiation=yes bandwidth=unlimited/unlimited disabled=no full-duplex=yes l2mtu=1598 mac-address=00:0C:42:D2:73:23 master-port=ether1-master-local mtu=\
   1500 name=ether5-slave-local speed=100Mbps
set 6 arp=enabled auto-negotiation=yes bandwidth=unlimited/unlimited disabled=no full-duplex=yes l2mtu=1598 mac-address=00:0C:42:D2:73:24 master-port=ether1-master-local mtu=\
   1500 name=ether4-slave-local speed=100Mbps
set 7 arp=enabled auto-negotiation=yes bandwidth=unlimited/unlimited disabled=no full-duplex=yes l2mtu=1598 mac-address=00:0C:42:D2:73:25 master-port=ether1-master-local mtu=\
   1500 name=ether3-slave-local speed=100Mbps
set 8 arp=enabled auto-negotiation=yes bandwidth=unlimited/unlimited disabled=no full-duplex=yes l2mtu=1598 mac-address=00:0C:42:D2:73:26 master-port=ether1-master-local mtu=\
   1500 name=ether2-slave-local speed=100Mbps
```

`/interface ethernet switch`

```
set 0 mirror-source=none mirror-target=none name=switch1
```

`/queue type`

```
set 0 kind=pfifo name=default pfifo-limit=50
set 1 kind=pfifo name=ethernet-default pfifo-limit=50
set 2 kind=sfq name=wireless-default sfq-allot=1514 sfq-perturb=5
set 3 kind=red name=synchronous-default red-avg-packet=1000 red-burst=20 red-limit=60 red-max-threshold=50 red-min-threshold=10
set 4 kind=sfq name=hotspot-default sfq-allot=1514 sfq-perturb=5
set 5 kind=none name=only-hardware-queue
set 6 kind=mq-pfifo mq-pfifo-limit=50 name=multi-queue-ethernet-default
set 7 kind=pfifo name=default-small pfifo-limit=10
```

`/interface bridge settings`

```
set use-ip-firewall=no use-ip-firewall-for-pppoe=no use-ip-firewall-for-vlan=no
```

`/interface ethernet switch port`

```
set 0 vlan-header=leave-as-is vlan-mode=fallback
set 1 vlan-header=leave-as-is vlan-mode=fallback
set 2 vlan-header=leave-as-is vlan-mode=fallback
set 3 vlan-header=leave-as-is vlan-mode=fallback
set 4 vlan-header=leave-as-is vlan-mode=fallback
set 5 vlan-header=leave-as-is vlan-mode=fallback
```

`/ip address`

```
add address=192.168.88.1/24 comment="default configuration" disabled=no interface=ether1-master-local network=192.168.88.0
```

`/ip dhcp-client`

```
add add-default-route=yes default-route-distance=0 disabled=no interface=ether6-gateway use-peer-dns=yes use-peer-ntp=yes
```

`/ip firewall connection tracking`

```
set enabled=yes generic-timeout=10m icmp-timeout=10s tcp-close-timeout=10s tcp-close-wait-timeout=10s tcp-established-timeout=1d tcp-fin-wait-timeout=10s \
   tcp-last-ack-timeout=10s tcp-syn-received-timeout=5s tcp-syn-sent-timeout=5s tcp-syncookie=no tcp-time-wait-timeout=10s udp-stream-timeout=3m udp-timeout=10s
```

`/ip firewall filter`

```
add action=accept chain=input disabled=no protocol=icmp
add action=accept chain=input connection-state=established disabled=no
add action=accept chain=input connection-state=related disabled=no
add action=accept chain=input comment="Remote WinBox" disabled=no dst-port=8291 in-interface=ether6-gateway protocol=tcp src-address=217.20.21.218
add action=drop chain=input disabled=no in-interface=ether6-gateway
```

`/ip firewall nat`

```
add action=accept chain=srcnat comment="VPN NAT exemption" disabled=no dst-address=192.168.111.0/24 src-address=192.168.88.0/24
add action=accept chain=srcnat comment="VPN NAT exemption" disabled=no dst-address=192.168.114.0/24 src-address=192.168.88.0/24
add action=masquerade chain=srcnat disabled=no out-interface=ether6-gateway
```

`/queue interface`

```
set ether10 queue=ethernet-default
set ether9 queue=ethernet-default
set ether7 queue=ethernet-default
set ether8 queue=ethernet-default
set ether6-gateway queue=ethernet-default
set ether5-slave-local queue=ethernet-default
set ether4-slave-local queue=ethernet-default
set ether3-slave-local queue=ethernet-default
set ether2-slave-local queue=ethernet-default
set ether1-master-local queue=ethernet-default
```