Hi, I've set up a Linux SuSE with TRex firewall. It's working fine. That firewall should protect 2 other SuSE linuxes, but the problem is that I need to enable remote login from any ip. I am thinking of diferent solutions, one is to use the user validation of Trex (with CryptoCard RB-1) which seems to me ok. But as I need to enable some kind of telnet + ftp, it would be somehow very inconvinient, as the user should 1)Login to the firewall, then do ssh (no problem so far) 2)Do ftp to the firewall, then, logged with ssh transfer a file from the firewall to the linux machine (really uncomfortable) The ideal solution would be to redirect some port of the firewall to the linuxes machines running openssh 2.5 (which handles sftp fine). The problem is that I would like extra authentication, so now I'm searching at cryptocard and I'm downloading some kind of module for PAM authentication (the problem is that's not free, and I don't know how much it would cost). I'd like to hear your oppinions about what should be done in this situation Thanks in advance Franco Galian