chrishodgetts wrote:Hello,
I have two interfaces with a few VLAN assinged to them, but only one bridge interface.
[-- snip --]
Assinging a firewall to the local interface br200 seems to perform correctly, so its something I am doing or not quite understanding.
I have not been able to find too much on this subject, so if anyone can assist I would be very appreciative.
Another +1 for posting your sanitized configuration. It isn't entirely clear on what you are trying to do.
Is the 3rd-party switch connected to your ERP 'eth7' configured to match your VLAN configuration? I am guessing you are using VLAN200 since that is what the 3rd-party wants but would like to be sure.
When you "apply a firewall to br200" you are missing some detail, including direction. This is where posting a sanitized config would be a big help.
As an option completely separate from the ERP, since you "own" one of the two switches, could you instead connect the 3rd-party switch directly to your switch rather than using a bridge on the ERP? You would then have a single connection (eth1) from your ERP to that environment and you could use the physical interface instead of layering a bridge on top of two physical interfaces.