So if i deactivate firewall2, IPTABLES is still active Yes.
and i can add my own set of rules (iptables -A TCP etc.) and they are active right away? They are active as soon as they are executed, may this be by a script or by commands you type at the command line. You have to ensure that they are active again after a reboot, so you better put them into a script and run this script during boot time, like Ray said. But setting up your own iptables script is a very complex task, because there are many things you have to take care of. I did this three years ago for ipchains, the predecessor of iptables. I think it took me some days to learn about ipchains and to set up the script, but then it worked great. Bye Uli -- Ulrich Roth IMPACT Business & Technology Consulting GmbH Im Mediapark 8 / KölnTurm D-50670 Koeln Phone +49-221-93 70 80-29 Fax +49-221-93 70 80-15 E-Mail: roth@impact.de