I have another small problem. I am currently operating several SuSE 7.3 servers patched with freeswan 1.99 x.509 at kernel 2.4.16. SuSEfirewall2 is running with the following config, I have included a partial firewall2.rc.config. My question is, when I run newer versions of nmap to audit these systems, it shows tcp port 80 as open. I do not have this port open, and my services file has it stripped out as well. Any ideas ??? FW_DEV_EXT="eth0" FW_DEV_INT="eth1" FW_DEV_DMZ="" FW_ROUTE="yes" FW_MASQUERADE="no" FW_PROTECT_FROM_INTERNAL="yes" FW_AUTOPROTECT_SERVICES="yes" FW_SERVICES_EXT_TCP="" FW_SERVICES_EXT_UDP="500" FW_SERVICES_EXT_IP="50 51" FW_SERVICES_DMZ_TCP="" FW_SERVICES_DMZ_UDP="" FW_SERVICES_DMZ_IP="" FW_SERVICES_INT_TCP="" FW_SERVICES_INT_UDP="" FW_SERVICES_INT_IP="icmp" FW_TRUSTED_NETS="xx.xx.xx.xx,tcp,22 xx.xx.xx.xx,tcp,22" FW_ALLOW_INCOMING_HIGHPORTS_TCP="ftp-data" FW_ALLOW_INCOMING_HIGHPORTS_UDP="" Andrew Longstreet, CNE Senior Network Consultant LONGSTREET NETWORK SERVICES OPERATED BY 1498351 ONTARIO LTD Barrie ON L4N 7G6 705-721-5325