Hi people, we have been having problems for the last 3 or so days... We have a redback router, a juniper router, an extreme switch and a juniper firewall. All have gigabit interface. They are connected like so: Juniper router [user traffic] -------------->Redback router [backbone network] ------------------>switch---------------------------> Juniper firewall-------------------->internet [gigabit interface] Now we have created vlans in each of this interfaces since the hardware have limited number of ports [except the switch of course] to carry different traffics between the routers, firewall ... etc Each router is configured with a virtual router [vrf] or contexts [in case of redback] to separate the different traffics [ which are separated by the vlans on the gigabit interfaces] Here is the puzzle - The Redback router cannot reach the Juniper firewall [ping] . This went on for days until we untagged the port at the switch level and thats when the Redback was able to reach firewall. This means only one vlan is allowed through. The moment we put the tag back on, the connection btwn the two dies. Now we really need this tags because the cable has to carry all the different vlans in the network. If you put a laptop [untagged] and try to reach the firewall, it reaches just fine... but any tagged traffic is rejected. == Juniper firewall has ScreenOS - revision 6 - ISG 2000. And the Redback router has version 6 too. Does anyone know of any inherent bugs in these systems that is causing these two not communicate through "*dot1q*" tagging? I have scoured the internet for past two days [seen the juniper knowledge base] but no one else on the whole wide net seems to be facing same issue. == Any contributions would be appreciated. w/regards Stephen N.