Thank you! the problem was indeed that i did not include the bridge itself as a tagged "port", after testing and confirming things worked the way i would like them to i did enable ingress-filtering=yesI only address here the vlan part. The problem with your config was that you did not include the bridge itself as a tagged "port".
Because you are "tapping" into the individual vlans, the bridge(cpu from the switch logic) is also a virtual port that needs to "pass" tagged traffic
Other considerations:
Having vlan-filtering=no on the bridge defeats the purpose of using vlans as the defined rules are not enforced.
Different things happen on different devices(because of the different switching chips used).
After testing if things work you should enforce the settings by also enabling "ingress-filtering=yes" on each port in the bridge (in "/interface bridge port")
on all the bridge ports.
also big thanks to Erlinden and Anav for the clarification and patience.
Statistics: Posted by RHWwijk — Thu Mar 07, 2024 11:30 am