Hi all, I have just inherited a SuSE 8.0 firewall box and need to add a rule to allow our developers to gain direct access to various web servers out there in the wild. Not ordinarily a problem, except that we also use transparent proxying so our home workers don't need to reconfig their laptops to gain web access over the VPN or the LAN. So, we have added a rule so that the developers can point their browser at http://${hostname}:50000/ and it will be redirected by the firewall to http://${hostname}:80. It seems to work, and so in order not to lose the config, I am trying to figure out which config file is the best place to put the rule so it comes back at next boot time. Where would you recommend I put the rule? The custom config file at /etc/sysconfig/scripts/SuSEfirewall-custom seems the most obvious place to me, but I cannot decide which section it best belongs in. Again, based on pure guesswork, my inlination is to put it in the fw_custom_before_masq() section, but my iptables experience is not what it could be (coming from ipfw on FreeBSD, a much simpler tool, but equally not as flexible). I have read such documentation as I can find about SuSEfirewall2 configuration, but it has not brought me any closer to making the decision! Any insight would be much appreciated. Dan -- Daniel Bye PGP Key: ftp://ftp.slightlystrange.org/pgpkey/dan.asc PGP Key fingerprint: 3D73 AF47 D448 C5CA 88B4 0DCF 849C 1C33 3C48 2CDC _ ASCII ribbon campaign ( ) - against HTML, vCards and X - proprietary attachments in e-mail / \