let's me tell you in these steps (sorry for my bad english): 1. I have 2 NIC: 1 internal and 1 external. the external is using public IP. 2. on yast, i check masquerading 3. external and internal allowed service ONLY listed: http 4. but my clients can access any outside POP/SMTP server (including yahoo using Ypops in their local PC), and maybe many others services. here i attach the sf2 config file. i need this feature in yast: 1. able to create groups, i.e: IT group and USER group 2. able to assign certain access to groups, i.e: a. IT group can access: www, ftp, pop b. USER group can acess: www, pop 3. list more service by their name, i.e: - icq instead typing port 5901, yahoo messanger for 5050. currently only: htttp, https, pop, pops, etc. __________________________________________________ Do You Yahoo!? Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com --------------------------------------------------------------------- To unsubscribe, e-mail: opensuse-factory-unsubscribe@opensuse.org For additional commands, e-mail: opensuse-factory-help@opensuse.org