transparant bridge public ips with same subnet.

RouterOS Beginner Basics
1

on dd=wrt I did the following.. I need the ip to be on the bridge itself and the bridge to run in promiscuous mode and bridge traffic between 1 port which goes to the cable modem and another which goes to a switch with all my local machines
I have public ips... I then want to put a firewall on the bridge.. I am moving away from dd-wrt as no recent builds have netfilter-enable compiled in the kernel so iptables rules will not work on the bridge.

Anyway Here is an example of the bridge script I used to run in dd-wrt.. Any suggestions what is needed now..
thanks in advance.

vlans dont work use preassigned vlans

vlan1 is going to map the the WAN port

vlan2 is going to map to switch port 1

set the startup script

echo 'setting vlan 1 ip'
ifconfig vlan1 down
ifconfig vlan1 0.0.0.0 promisc up

echo 'setting vlan 2 ip'
ifconfig vlan2 down
ifconfig vlan2 0.0.0.0 promisc up

#create a new bridge and add vlan3 vlan4 on it
echo 'creating bridge'
ifconfig br0 down
brctl delbr br0
brctl addbr br0

echo 'addign vlan1 to br0'
brctl addif br0 vlan1

echo 'addign vlan2 to br0'
brctl addif br0 vlan2

add the public address to the bridge

echo 'adding ip to bridge'
ifconfig br0 50.199.204.129 broadcast 50.199.204.255 mask 255.255.255.192 up


echo 'show bridge'
brctl show

ifconfig vlan1 promisc up
ifconfig vlan2 promisc up

echo 'showing ifconfig'
ifconfig

echo 'adding default gw'
route add default gw 50.199.204.190 dev br0

echo 'showing routes'
route

echo 'modules'
/sbin/insmod /lib/modules/2.4.37/ebtables
/sbin/insmod /lib/modules/2.4.37/ebtable_broute
/sbin/insmod /lib/modules/2.4.37/ebtable_filter
/sbin/insmod /lib/modules/2.4.37/ebtable_nat
/sbin/insmod /lib/modules/2.4.37/ebt_ip
/sbin/insmod /lib/modules/2.4.37/ebt_snat

turn them up

echo 'turning on mcast spt'
ifconfig vlan2 multicast on
ifconfig br0 multicast on
ifconfig br0 spt on

#2nd ip for other private net
echo '2nd ip for private net also br0:0 for dhcp'
ifconfig br0:0 169.254.255.1 broadcast 169.254.255.255 mask 255.255.0.0
ifconfig br0:1 192.168.1.129 broadcast 192.168.1.1 mask 255.255.255.0

#do firewall here when tested
#echo 'firewall'
#./removefirewall
./firewall2work