i have a mikrotik RB3011UiAS-RM with basic configuration.
PORT 1 WAN
PORT 2 WAN-failover, distance 2
PORTS: 3-9 are bridged
NAT configured.
Home assistant is plugged in PORT 6
Wireless RBcAPGi-5acD2nD-XL cAP XL ac plugged in PORT 3.
First issue occurred with my sonos speakers not being discovered by home assistant, discovered if i disable bridge firewall speakers starts working.
From the official app there was no issue whatsoever.
Also if i move the speakers in the same physical switch group they work with bridge firewall on, which is weird ??
Same issue with GREE AC failing to be discovered, switching bridge firewall off they start working in home assistant.
Official app has no issues.
When you say “Bridge Firewall”, are you referring to Bridge → Filter (inside the Bridge settings)? If so, why are you using that? And how exactly are you “disabling” it to make things work?
Since your Sonos speakers and GREE AC start working when the bridge firewall is disabled, it’s likely that the firewall is blocking necessary discovery packets. One solution could be to adjust the firewall settings to allow multicast traffic or create specific rules that permit traffic between the devices on your network. You might also try segmenting your network to see if the issue resolves when all related devices are on the same VLAN or subnet.
I recently read an article on how to install Home Assistant on Synology, and it had some useful insights that might help you. For example, setting up Home Assistant in a Docker container can give you more control over network configurations and firewall rules, which could be useful for troubleshooting your current issue. Additionally, the article mentioned the importance of ensuring all smart devices and Home Assistant are on the same network segment for optimal performance. You can find more detailed steps and tips in the article here https://www.mklibrary.com/how-to-install-home-assistant-on-synology/
Without showing your config, its hard to say but your use of bridge ip firewall is ONLY to be used by advanced users who know what they are doing, and understand why they are using it, instead of sticking to the normal input chain and forward chain firewall rules that work for 99% of the time.