I found this reference in the below document. Is it correct that this is a current limitation of flow-tap (about 40 Mbit/sec)
“For flow-tap, a services PIC supports a total limit of 20 Kpps ingress and 20 Kpps egress
traffic, assuming 256 bytes per packet. Carefully select the match conditions in the
LEA filter so that these limits are not exceeded when traffic comes from a high-speed
interface. Ensure that only necessary traffic is sent by the Packet Forwarding Engine
firewall filter to the services PIC.”
https://www.juniper.net/techpubs/en_US/release-independent/nce/information-products/topic-collections/nce/lawful-intercept-flow-tap/lawful-intercept-using-flow-tap.pdf
#flow-tap