Create Date: Apr 9 2013 9:36PM
I understand for VLANs to talk to each other you must enable ipforwarding.
Now, I have a vlan with sensitive machines on them so I do not want any other client on the other VLANs on the switch to be able to talk to them unless permitted by myself.
I can use ACLs on the switch to do this, but is it possible to add in specific routes using 'create iproute' so that for instance, machine 192.168.33.33 on my network can talk to 192.168.13.x subnet/VLAN, if ipf isn't enabled explicitly on that VLAN? (from rfalloon)