IP firewall or bridge firewall on Bridge?

WirelessRudy · July 15, 2009, 3:51pm

Why and when should I use the “use IP firewall” option when two interfaces are in a bridge?

I have only NAT and some simple access filters in the firewall and mangle rules for QoS processing (queue tree).

If the “use IP Firewall” option is disabled and the Bridge Filter list is empty does this means all traffic over the bridge passes unprocessed?

I still see traffic over the normal firewall filters while all traffic runs over the bridge and the option is NOT to use the IP firewall!?!

Little documentation on the use of firewall in bridge mode…

rgds.

Chupaka · July 16, 2009, 7:14am

yes, traffic will go through the bridge without processing

routed (not bridged) traffic will be affected by firewall

WirelessRudy · July 16, 2009, 9:26am

OK, thanks. I figured it out.
I made a thinking error too, did not realize yet another interface is used as backhaul for this unit so between this interface and the bridge off course all traffic is routed and runs over the normal IP firewall.

Thanks for the reply.

macgaiver · July 16, 2009, 9:30am

All answers here:
http://wiki.mikrotik.com/wiki/Packet_Flow