Hi everyone, A few days ago I had asked why I had su much scans for port 113 well I kind of find the answer as this happens more when I send emails. I have found the following information as it also slows smtp service. The suggesstion is as follows To solve this problem: 1)reconfigure the e-mail server to stop querying identd info 2)reconfigure the firewall to RST all those connections 3)reconfigure the firewall to allow this protocol, but this would be a BAD IDEA because identd/AUTH reveals a HUGE amount of information about your UNIX machines. Now I do not want to do option 1 since I don't think I am ready to play with sendmail.cf. I do not want to do option three since it is written in captial letters. So I am only left with option 2. If possible to do so; how can I can make it just to accept for SMTP ident requsst but deny or reject (whichever is recommended)for all others ? If not possible then DENY or REJECT which option would be better to increase performance. #IDENTD $IPCHAINS -A input -p tcp -s $REMOTENET -d $OUTERNET 113 -j DENY -l $IPCHAINS -A input -p udp -s $REMOTENET -d $OUTERNET 113 -j DENY -l TIA -- Togan Muftuoglu