Roderick van Domburg wrote: > Hello everyone, > > I was pondering if blindly trailing every tcp rule with the 'setup' keyword > would incur any performance loss or security hazard. It would incur a security hazard. Any tool which performs "stealth" scans (ie, such as nmap's default scan mode) would go right past your firewall rules. -- -Chuck