Hello all, Can anyone tell me if there is a good reason to allow connections to a local DNS port(53) from remote privledges ports(< 1024)? As I understand it *all* DNS is one of: local port remote port (53) <-> (53) (1024:65535) -> (53) (53) <- (1024:65535) and there should never be: local remote (53) <- (1:1023) (1:1023) -> (53) pete -- http://www.elbnet.com ELB Internet Services, Inc. Web Design, Computer Consulting, Internet Hosting