Simple question looks like its been rehashed over and over again but the results always degenerate into a different discussion as someone finds out they had a type-O.

Projected network
VLAN0 – LAN 192.168.1.1
VLAN1 – WAN
VLAN2 on port #2 192.168.2.0 address 192.168.2.1
VLAN3 on port #3 192.168.3.0 address 192.168.3.1

Need Analysis

Per instructions its all set up and working with nvram and all and seems to work.

Can connect a PC tp port#2 with a address of 192.168.2.12 and reach or ping
[ 192.168.1.1 and 192.168.2.1 and 192.168.3.1 ]

Can connect a PC to port#3 with address of 192.168.3.12 and reach or ping
[ 192.168.1.1 and 192.168.2.1 and 192.168.3.1 ]

from switch I can ping 192.168.2.12 and 192.168.3.12 directly

But I need everything in VLAN2 to be able to see and talk to everything in VLAN3
So right now 192.168.2.12 cannot ping or see 192.168.3.12 and visa versa (but they need to)  192.168.2.0 holds servers and 192.168.3.0 holds PCs

What do I need to add via iptables through the SXXFirewall script to make them communicate and see each others children?

(Last edited by thebadeye on 7 Jul 2007, 21:44)