Hi, I am running a mysql and http server. Now I would like to block all connections to mysql (tcp 3306). (Only connections from localhost to localhost are allowed). The http-port (tcp 80) should be reachable by everybody. So I made the following: #emty ip-table iptables --flush #accept everything from localhost to localhost iptables -A INPUT -p all -s localhost -d localhost -j ACCEPT #block mysql (tcp 3306) iptables -A INPUT -p tcp --destination-port 3306 -j REJECT Well, connections from outside are blocked, BUT: 1) nmap says tcp/3306 (mysql) filtered 2) in my xconsole (and tty10) the following warning appears: <date> <time> <my-pc> mysqld-max[1156]: warning: can't get client address: Connection reset by peer Now would like to know, why does nmap know that the port is filtered? And why does mysql notices that there was a connectionrequest, althought it was blocked? Thx Markus