Installation

I have a new setup that I thought I know how to do, but it seems I am missing something.

I have an ALIX 2c board running m0n0 1.3b18 which seems to work well. The board I have has WAN/LAN and but I am looking to provide a large number of subnets (10+ eventually) for separate offices. I have a Netgear FS726T smart switch which has VLAN 802.1q support.

M0n0

• defined a new VLAN with id 11 and 12 and created an interface OPT1 and OPT2.
• defined the IP addresses on the interfaces as 192.168.11.1/24 and 192.168.12.1/24 respectively.
• configured DHCP to give out 100...199 for each
• added a firewall rule on each interface to allow everything from it's own interface (same as default rule on LAN interface.(I know when I get this working I will make these rules more secure)

Switch
I have configured my switch such that port 11 has its PVID set to 11, and accept Untagged packets on vlan 11 only. (likewise for 12) Port 25 is configured for tagged packets on both vlans.

All other settings are at their default values.

When I connect my laptop to port 11, and 12 I get an IP address with the expected address from DHCP, however, I cannot communicate with anything from there. I cannot ping any of the routers addresses or utilise NAT for internet access. From the lan interface (any other port on the switch) I get the expected ip address for that interface and CAN ping the router (all vlan interface addresses too) and access NAT/Internet.

What have I missed?

If I were you I'd change the firewall rule on one vlan to allow all traffic. If that works, then you know the rule is causing the problem.