One question, does bridge filter work on CHR? if so, how do I activate it? I tried setting simple rules, yet they never get matched, tried the same simple rules on real equipment and they work as intended.
The virtual and real topology are exactly the same, on CHR this rule never works (tried other rules too, same problem) on the real equipment it works correctly.
Hi, it’s not. So isn’t on real equipment as well. This option as far I know is only to force bridged traffic to also be processed by IP rules on /ip firewall; regular bridge rules doesn’t need this option turned on, unless you’ve got any information related to a bug that makes this option behave differently.
I’ll try your suggestion later, but if this works it’s probably a bug, could someone from Mikrotik clarify this please?
I connected two CHRs, added vlan to CHR1’s interface, then bridged two interfaces on CHR2 and added another vlan on top of that and finally these rules:
And nothing, I can see vlan packets in Torch, both incoming and outgoing, but not a single packet matched by these rules. Same thing on real hardware works. So it looks like you found a bug.
Though so. I was trying to validate some designs but this issue came in. Would be nice to have answers from mikrotik staff since this feature which is a major one seems to be broken on CHR.