Hello all, I'm admittedly not a linux security guru so maybe I'm missing something but when I run YAST to configure the firewall in SuSE 9.3 I really don't understand at all. I have a single interface designated as the external zone. When I go to the "Allowed services for selected zone option" there are a bunch of services listed in the box: HTTP Server HTTPS Server IMAP Server IMAPS Server IPP Server LDAP Server LDAPS Server Mail Server POP3 Server POP3S Server Remote Administration Remote Synchronization SSH I don't want any of these services accessible on the external interface but if I highlight any of these and click remove they don't go away. In the end I want to make this machine the DMZ but I won't do that if these things are exposed. How do I disable these ports? Also how do I enable a series of ports? In the same allowed services screen there is an advanced button and if I click on that button and try to allow the port range 6881:6999 and hit ok, the message I get is: Unknown Port Name Port name '3881:6999' is unknown in your current system. It probably would not work at all. Really use this port? How does one designate a range of ports? Thanks, Andy