Good morning,
+ Have you made any change after which the issue appeared?
No, it's a new installation
+ How do you suspect that FW is inducing the latency?
I don't see latency, but I see packet drops. Even look for the pps from test above, incoming is bigger then whatever has been done by eth0/0 (untrust)
Test like VM1 -> ESX1 -> SWITCH -> ESX2 -> ESX2 shows no drops
Same test, but when it requires to be routed via SSG interface i.e.
VM1 -> ESX1 -> SWITCH -> SSG140 -> SWITCH -> ESX2 -> ESX2 - .same exact amount of 37% drops
+ Can you please give us a brief idea about topology?
VM Machine -> ESX -> 1000/full -> 3750-24(stack) -> 100/full -> SSG140 -> 100/full -> ISP
+ Have you tried to bypass the FW and performed the test if there is improvement in the throughout?
We have no issue when laptop connected to the uplink port ("ISP port")
+ Do you face the same issue with the TCP traffic as well?
Nope, only UDP affected
+ What are the CPU levels , Duplex settings on the interface incoming and outgoing and the polic configuration on the FW?
PHX-CL
hx-fw1(M)-> get performance cpu
Average System Utilization: 1%
Last 1 minute: 2%, Last 5 minutes: 2%, Last 15 minutes: 2%
Each interface configured with static 100/full/1500
+ Aer your using any traffic shaping , UTM features or not ?
Nothing, just a policy.
P.S. Just be aware that drop rate for 1Mbps traffic is always 37%, I saw once 35% and 36%, but then 99.9% of time it's 37%