I am trying to isolate devices within one of my bridges. Is Auto Isolate an option do in the bridge section, or is the firewall the way to go? (see attached)
I typically tend to use vlans to separate subnets at layer2 and firewall rules at layer3.
For firewall rules my last rule is DROP, and thus anything not accepted above in previous rules in that chain, is not permitted. Clean and efficient.
From the documentation
“When enabled, prevents a port moving from discarding into forwarding state if no BPDUs are received from the neighboring bridge. The port will change into a forwarding state only when a BPDU is received. This property only has an effect when protocol-mode is set to rstp or mstp and edge is set to no.”
I don’t think that’s what you are looking for.
Try using the bridge split-horizon feature.
Private vlan might be a good option.
(Done in hardware)
https://help.mikrotik.com/docs/display/ROS/Switch+Chip+Features#SwitchChipFeatures-PrivateVLAN