I've setup a RAP-5 port for bridge mode. I want the device connected to the bridged port to have unrestricted access to the Internet. In my testing I can not get the bridged device talking to anything external to the RAP. As a sidenote, I know that the bridged device is reachable on the RAP by wireless clients in the split-tunnel policy I setup.
I can't post the config at the moment, but here is basically what I've setup:
Port 4 is in bridged mode.
Default role for the anything connected to port 4 is "authenticated" (confirmed the device receives this role when connected).
RAP is setup to provide DHCP for the bridged unit (confirmed device receives IP, SM, DG, and receives DNS server from upstream router).
I've checked the firewall state of the RAP and it is allowing the traffic that the bridged device transmits which is why I'm so baffled.
Do I need a src NAT policy for bridge mode traffic egressing the RAP? Thoughts?