Bridge port isolation on Edgerouter x sfp

Using 22.03.5 fresh install to test the isolation feature in Luci and trying to isolate ports in the bridge.
This is added to /etc/config/network

config device
option name 'eth1'
option isolate '1'

config device
option name 'eth2'
option isolate '1'

config device
option name 'eth3'
option isolate '1'

config device
option name 'eth4'
option isolate '1'

and
cat /sys/class/net/eth1/brport/isolated returns '1'
cat /sys/class/net/eth2/brport/isolated returns '1'
cat /sys/class/net/eth3/brport/isolated returns '1'
cat /sys/class/net/eth4/brport/isolated returns '1'

But I can still ping devices connected to other ports. Is there something else that needs to be installed or enabled?
This is a fresh install with no other changes.

In older releases, this used to work only for software bridges. In your router, the switch is handled by a DSA driver and just represented as a bridge, the communication between your hosts is handled by the switch hardware. The isolate option is probably not passed down to the hardware (I haven't verified this, but other forum posts suggest so).

AFAICT, you will have to set up individual VLANs or interfaces for every port you would like to isolate.

Ok thanks.

This topic was automatically closed 10 days after the last reply. New replies are no longer allowed.