At least in Arch Linux, this is the default. I think this makes bridge behavior conterintuitive because it's supposed to act like an unmanaged switch and it's now dropping packets, as most of our forward chains' default policy is drop.

Is there any reasons behind these default values?