Hello everyone, and thanks Frederic for a great firewall. I have tried so many different ones over the years and were happy with some, but not happy enough. I have actually trialled LnS about 4 times over the past year when I first discovered it while I was trying to find a FW that was easy enough for me to use and wasn`t too annoying, so last night I took the plunge and bought LnS. I am very happy with it and it is so light on system resources unlike some of the HUGE FWs you can get which do so many other things. But I only wanted a Firewall, just a firewall ! LnS does exactly that. ------------- So...my first question. I am behind a router with basic fw capabilities. Using LnS with standard ruleset, added the one rule to allow standard safe communication between router. What I am seeing in the logs is quite unusual and I don`t understand it. In my router I have forwarded one specific non-standard port to allow uTorrent to work. (49xxx) This has never been a problem in the past but since yesterday I have been seeing this port (and only this port) being probed by 2 specific addresses. (I have never noticed this happening before anyway) This happens when I do NOT have uTorrent running, and a test at ShieldsUp shows the port to be stealthed. So could someone help me and tell me that this is safe or not, and whether I should just ignore these alerts from the "Any Other Packet" rule ? I am just about to read through the forum thoroughly and try to get uTorrent to work properly & safely, but I will probably be back asking for more help Thankyou.