Just a preliminary note: found nfs & rpc exposed on the external interface. susefirewall2 appears to be configured not to do that. At least, nfs & rpc are not on the allowed services list for external interface. susefirewall2 allowed external connections to all the mapped nfs ports. Information leaked about internal network configuration, several internal hosts, among other things. Found this because I was investigating many dropped packets logged by sfw2 earlier this morning to udp port 56216, which resembles the pattern seen where sfw2 drops packets from extablished connections. also noted that sfw2 is logging & dropping lots of packets from established connections, which probably explains why transfers are so incredibly slow. Also explains the constant resends and perhaps the many duplicate packets seen w/ wireshark. for the time being, nfs, rpc & portmap services are shut down while I investigate. y'all might want to take a look @ what sfw2 is allowing w/o your knowledge if you use it. Considering dumping sfw2 and using my own firewall configs. -- jd -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org To contact the owner, e-mail: opensuse+owner@opensuse.org