Zenarmor in transparent proxy mode

[vutt01]

New user signing in. My trial period is ending and for now I decided to continue zenarmor Home plan.

I have used *wrt routers since Linksys WRT54g days. Mainly Asus routers lately. Finally decided to explore opnsense option with zenarmor.
Deployment mode: Routed Mode (L3 Mode, Reporting + Blocking) with emulated netmap driver and Zenarmor is monitoring only BRIDGE LAN side.
My "Chinese n5105 box" with dedicated hardware management port connected to LAN is sitting between ISP and Asus router (Trend Micro AI Protection off)

Since I'm front of Asus NAT Zenarmor logs cant say anything useful about about my devices behind nat. Strangely enough my public IP address will be resolved in logs to www.google.com with DNS enrichment on.
One more observation. With my scenario device management feature is pointless however somehow zenarmor discovered 2 of my devices SamsungTV and NVidia shieldTV with correct private IPs?!? Go figure.

Anyways are there any zenarmor guides/best practices links how run/maintain transparent proxy setup I could educate myself?
Is there way to run other useful services  on the same box? Unbound DNS over management port? There seems to be enough CPU power left to use it for other stuff.

[sy]

Hi,

The official Zenarmor documentation for OPNsense can be found at https://zenarmor.com/docs/opnsense.

To set up bridge mode, please configure the bridge interface on OPNsense by visiting https://www.zenarmor.com/docs/network-security-tutorials/how-to-configure-transparent-filtering-bridge-on-opnsense.

After that, protect the inner (LAN side) interface of the bridge with Zenarmor to achieve transparent bridge filtering using Zenarmor.