Ok experts got a good one for you...

Simple hub+spoke setup.  All C3750s.. a C3750G-TS a C3750-PS and a C3750-WS (with wireless controller).  The C3750G-TS is the hub to the outside world.  All have c3750-ipbasek9-mz.150-2.SE11 on them.

Configs are here:

C3750G-TS -> https://dpaste.de/vzUn/raw
C3750-PS -> https://dpaste.de/Kots/raw

C3750-WS -> https://dpaste.de/CWsv/raw

Have a desktop (Mac) plugged into the TS - Gi2/0/2 has both vlans 10 and 100 configured - vlan 10 is the important one at the moment..
Have various other devices plugged into the PS - Gi2/01 thru 12 the Mac can talk to them no problem at all (ie the trunk over the SFP has to be working)

Firewall (non cisco) is not VLAN aware and is connected to the TS - Gi2/0/1 for Vlan 10 and Gi2/0/3 for Vlan 2.

Now the problem...

From the Mac (Vlan 10), I can ping/telnet/ssh/http the TS and the WS on 172.17.2.39 and 172.17.2.37 respectively (Vlan 2).  I cannot however get to the PS on 172.17.2.38.

Similarly from the TS I can ping itself (no surprises there) the default gateway (firewall) on 172.17.2.254 and the WS 172.17.2.37.  On the WS is can ping itself, the default gateway (172.17.2.254) and the TS on 172.17.2.39.  Neither the TS nor the WS can ping the PS on 172.17.2.38.

The PS cannot ping anything except itself on 172.17.2.38 (not the TS, the WS nor the firewall on 172.17.2.254.)

..... lastly .....

It was all working using the WS as the hub and copper connections earlier today with pretty much the same config...

These are the interfaces (sh int <etc> for each of the SFP ports - hostnames tell you which is the hub): https://dpaste.de/74MR/raw

Thanks in advance for any insight on whether I am truly a moron or have stumbled on something odd..

Regards,

Michelle