I have such configuration on my router:
bridge name bridge id STP enabled interfaces
br-lan 7fff.5448e6a31e40 no lan1
lan2
phy0-ap0
phy1-ap0
lan_sec 7fff.5448e6a31e40 no lan2.20
phy0-ap1
phy1-ap1
Since 23.05.0 firmware version lan_sec bridge doesn't forward packages from lan2.20 to phy0-ap1 and phy1-ap1.
Ex. DHCP request are forwarded from phy0-ap1 to lan2.20 and reply unicast packet appears (shown by tcpdump) on lan_sec interface but tcpdump doesn't show this package on phy0-ap1.
When I switch both phy0-ap1 and phy1-ap1 interfaces to br-lan bridge there is no such problem.
Please help me to fix this issue.
BR,
Michal