Nothing I can see thus far that would cause any issues.
Couple of things seem off.
-
The second NAT rule seems to be doing nothing, you identify a source address but what is being source natted too???
So perhaps you should explain why you have the second rule ( intent-purpose ??)
/ip firewall nat
add action=masquerade chain=srcnat comment=“defconf: masquerade”
ipsec-policy=out,none out-interface-list=WAN
add action=masquerade chain=srcnat comment=AdGuardHome src-address=
192.168.34.0/24 -
Please explain the purpose of this rule: set use-ip-firewall=yes ???
If you simply thought this was required because you have a bridge, then remove it…