I am trying to understand the expected behavior with regard to rules for
interfaces that are members of a bridge, when the bridge device (e.g.
BRIDGE0) is *directly* assigned to an interface (e.g. LAN, WAN etc.)
Intuitively, I would expect that rules appearing on the bridged
interface's named tab would apply to all member interfaces for that
bridge. In other words, I would have expected the tab to function just
as if an Interface Group had been defined for those interfaces. This
does not appear to be the case.
I tried this last on v 2.2.0 (not since). I could not get traffic to
flow between bridged interfaces in my testing without creating pass
rules directly on the bridge's individual member interfaces OR by
creating pass rules on an Interface Group created for, and assigned to,
each of the bridge's member interfaces (i.e. one *tab* to *rule* them
all) :-)
If this is expected behavior, what is the rationale? The named tab for
the bridge would seem to serve no other purpose than group rules.
-K
_______________________________________________
pfSense mailing list
https://lists.pfsense.org/mailman/listinfo/list
Support the project with Gold! https://pfsense.org/gold
