MikroTik

How I understood:
If you want to benefit from HW offload where possible (for those devices where it is supported), using bridge for setting up VLANs is the default way already for quite some years.

Inter-VLAN Routing
Since L3HW depends on L2HW, and L2HW is the one that does VLAN processing, Inter-VLAN hardware routing requires a hardware bridge underneath. Even if a particular VLAN has only one tagged port member, the latter must be a bridge member. Do not assign a VLAN interface directly on a switch port! Otherwise, L3HW offloading fails and the traffic will get processed by the CPU

....

Assign the VLAN interface to the bridge instead. This way, VLAN configuration gets offloaded to the hardware, and, with L3HW enabled, the traffic is subject to inter-VLAN hardware routing.

How I understood:
If you want to benefit from HW offload where possible (for those devices where it is supported), using bridge for setting up VLANs is the default way already for quite some years.

I'm specifically talking about the use-case where I have a Trunk Port on my MikroTik Router which goes with a bunch of tagged VLANs to a Switch. For every VLAN there is a Interface with Address assigned on the MikroTik (LAN IP).
Is there still bridge HW offloading in such a scenario where Interfaces and not just "switching" are involved?

Important thing to understand is what exactly gets offloaded from bridge to switch chip: it's passing frames between ports, attached to switch chip (typically they're either RJ45 or SFP ports, always consult block diagram of particular device), and which are members of same bridge. Additionally switch chip handles adding/stripping VLAN headers in case when port is untagged member of a particular VLAN.

However, anything related to router's IP stack (including vlan interfaces) is entirely processed by CPU (unless device is capable of L3HW offload).

So using bridge with single physical port doesn't allow any offload to hardware (untagged "VLAN" in this case doesn't need any VLAN tag manipulation and adding VLAN tag by switch chip actually means slightly more CPU processing due to use of vlan interface).

Hello

Given a Network setup with multiple LAN VLAN's. Is it the correct way to create VLAN Interfaces onto the main Bridge, or is it better to create VLAN interfaces onto the Ethernet Interface?

I'm currently mostly doing VLAN interfaces onto the Ethernet Interface. This works fine, but it feels like it is the wrong way of doing it.

Is creating the VLAN interfaces onto the main Bridge the correct way of doing it? Is this introducing some kind of notable performance impact?








Creating VLAN interfaces on the main bridge is the recommended approach in MikroTik setups, as it centralizes traffic management and ensures proper bridging for VLAN traffic. Adding VLANs to Ethernet interfaces directly can work but may bypass bridge-level controls, potentially impacting consistency. Performance impact is minimal with proper configuration. Academized’s “Write My Research Paper” https://academized.com/write-my-research-paper service was exactly what I needed to manage my academic workload. The writer assigned to my paper was professional and delivered a well-researched, high-quality paper before the deadline. The process was easy, and their support team was always available to address my concerns. Their affordable pricing and reliable service make them a top choice for academic assistance.