A bridge is a class of network device that’s designed to connect networks at OSI Level 2, which is the data link layer of a local-area network (LAN). Bridges must connect like LAN protocols (for example, Ethernet, FDDI or token ring), and bridged networks will pass the packets of all higher-layer protocols that might be running on the network. While any LAN protocol can be bridged, the overwhelming majority of LANs today are Ethernet switched LANs, and most bridges are thus Ethernet bridges.

The big risk in bridging is traffic overload. All broadcast messages are sent across an entire LAN, and even messages directed to a single station are actually sent to every port on many LANs. This issue can be addressed by segmentation. Bridging builds an extended LAN by connecting LAN segments, and advanced bridge technologies aim at improving the options for extension to eliminate the problems of traffic overload. 

The OSI Model

Bridges models and types

A bridge connects LAN segments to form a single “flat” network that appears as a continuous Level 2 domain or LAN. There are two common models of bridging: local and remote. Local bridging is created by linking LAN switches with local cables, and remote bridging is where two bridges are connected via a wide area network (WAN). In today’s network applications, local bridging is the most common model, used both in data centers and in departmental and branch applications.

A simple bridge will forward all packets it receives, which means there is no actual segmentation and that traffic growth problems are inevitable. To prevent this, advanced bridges, such as transparent and source-routing bridges, use a forwarding table to identify the path from the LAN where a packet originates to the bridged LAN where the destination resides, and send only to the destination LAN segment. If multiple paths exist, this can create a loop where packets again multiply until they use all LAN capacity. Early models of bridging used a spanning tree algorithm to detect the best path to cover all possible destinations and eliminate loops. The modern approach is to use multiport bridging, which detects a complex bridging configuration where LANs have multiple possible bridge connections between them, making it a “shortest-path” specification.  This is the best approach to creating a resilient bridged network.

Difference between routers and bridges

Because IP networks dominate communications today, bridges are usually associated with the creation of an IP subnetwork, a LAN or bridged-LAN community that serves as the basic unit of connection in IP/router networks, including the Internet. Bridges, as elements of a LAN, are standardized by the Institute of Electrical and Electronics Engineers (IEEE), in the IEEE 802 family. An IP subnet will contain a router that serves as the default gateway to other IP subnets and the Internet. In the bridged IP subnetwork, traffic between subnet members will be passed at OSI Level 2, and traffic to others will be directed to the default gateway for transmission at Level 3, the network layer.

A bridge can be combined with a router in a product sometimes called a brouter, but the term is no longer in common use.  Instead, most routers will have some support for bridging features, allowing the default gateway to serve both as a bridge and a gateway to other subnetworks.

This was last updated in May 2019

Continue Reading About bridge

Dig Deeper on Network device security: Appliances, firewalls and switches