Don't need that- etho,eth1 and vlan0 are routed via rip or static routes.
My ADSL router takes care of the NAT.
Fond a problem , now it looks like it works:
iptables -P OUTPUT DROP #changed to ACCEPTED
What im trying to do is to have different segments all behind a ADSL router which is connected to Internet. The firewall in that router is quite bad. So i am trying to protect the segments from my own wireless segment even i dont really have to
Still have to do some reading about opening ports between the segments.
Im studying CISCO so i dont have that much time for iptables!