I am trying to build a L2 Firewall in vyOS.
packets passing through the vyOS is VLAN tagged packet.
Packet tag is not, I was able to control.
However, the packet there is a tag could not be controlled, it will then, passing through the FW.
The following will be set at the time of the command.
set interfaces bridge br0
set interfaces ethernet eth0 bridge-group bridge br0
set interfaces ethernet eth1 bridge-group bridge br0
set firewall name L2FW default-action drop
set firewall name L2FW rule 100 action drop
set interfaces bridge br0 firewall in name L2FW
What would be the best thing to do?