Hi All I'm looking to allow access to an internal web server via port forwarding, but I would like the port on the firewall to first authenticate the user. i.e. The client connects to port 8080 on the firewall with a web browser. On connection to the port he is served with a html login page - preferable via SSL. If the username and password is correct the port-forwarding is enabled for the clients IP Address and maybe MAC Address via IPCHAINS or IPTABLES. Once the client is finished it either logs out (i.e. the firewall rule closes the port after the client logs out or expires once the client disconnects). Has anyone set-up some thing similar to this or knows where I can get more info - all tip welcome. PS. This set-up seems similar to a POP before SMTP Config. Thanks in advance Steven Thompson