I have been working on the LACP configuration on a device with VyOS 1.3.3. This is the configuration we have used:
# Bonding configuration
set interfaces bonding bond0 mode 802.3ad
set interfaces bonding bond0 member interface eth0
set interfaces bonding bond0 description 'Firewall_F1'
set interfaces bonding bond1 mode 802.3ad
set interfaces bonding bond1 member interface eth1
set interfaces bonding bond1 description 'Switch_F1'
# Bridge (br0) configuration:
set interfaces bridge br0
set interfaces bridge br0 member interface bond0
set interfaces bridge br0 member interface bond1
set interfaces bridge br0 description 'Bridge-BondFw-BondSw'
# Description of the interfaces:
set interfaces ethernet eth0 description 'Hacia Firewall'
set interfaces ethernet eth1 description 'Hacia Switch'
# Configuration VLAN:
# Enable VLANs on the bridge (br0)
set interfaces bridge br0 enable-vlan
# Configure the native VLAN for the Bonds.
set interfaces bridge br0 member interface bond0 native-vlan 1
set interfaces bridge br0 member interface bond1 native-vlan 1
# Configure allowed VLANs on the Bonds.
set interfaces bridge br0 member interface bond0 allowed-vlan 10
set interfaces bridge br0 member interface bond1 allowed-vlan 10
set interfaces bridge br0 vif 10 description 'BridgeV10'
set interfaces bridge br0 vif 10 firewall in name 'inbound'
set interfaces bridge br0 vif 10 firewall local name 'local'
With this configuration, the firewall is not performing its function. The device sees the traffic passing through the bridge, but it is not blocking the traffic according to the block lists configured internally in the firewall.
Thank you in advance for your help and feedback.