• nano /etc/network/interfaces

auto vmbr0
iface vmbr0 inet static
        address 11.22.33.44/24
        gateway 11.22.33.254
        bridge-ports eno1
        bridge-stp off
        bridge-fd 0
        hwaddress A4:BF:01:2E:D1:97

auto vmbr1
iface vmbr1 inet static
        address 192.168.23.1/24
        bridge-ports none
        bridge-stp off
        bridge-fd 0
        

• systemctl restart networking

• iptables -t nat -A POSTROUTING -s '192.168.23.0/24' -o vmbr0 -j MASQUERADE
• iptables -A FORWARD -m conntrack --ctstate ESTABLISHED,RELATED -j ACCEPT

• iptables -t nat -D POSTROUTING -s '192.168.23.0/24' -o vmbr0 -j MASQUERADE
• iptables -D FORWARD -m conntrack --ctstate ESTABLISHED,RELATED -j ACCEPT