Hi, there are a few things unclear with the configuration of SuSEfirewall. I just upgraded to SuSEfirewall2. There is the variable FW_SERVICE_SAMBA. I use Samba, but I am in doubt if I should set it to yes, because I don't know exactly what it does - is it just opening the port 137, 138, 139 TCP/UDP? And if yes, on which devices? I think this would not be very secure, so I would rather open the ports manually. But if it would be that easy, why does FW_SERVICE_SAMBA exist anyway? I don't quite get the meaning of it. Same with FW_SERVICE_DNS. And second, why should one want to set FW_ALLOW_INCOMING_HIGHPORTS(TCP|UDP) to yes? I wonder why the default setting is yes, I think this is quite a security-hole. The last question concerns FW_ALLOW_PING_EXT="no". Does this setting mean, that someone in the internet is not able to ping my machine? Sorry for the question, the doc/comments are not sufficient for me). regards Florian Pressler _________________________________________________________________ Downloaden Sie MSN Explorer kostenlos unter http://explorer.msn.de/intl.asp