You guys...I am just mystified how to translate these instructions from www.hackerwhacker.com to prepare my firewall for a comprehensive scan. Maybe you can have a look at this and see how it translates to what I need to do in Norton Internet Security 2003: From HACKYOURSELF (www.hackerwhacker.com): <<BEGIN EXCERPT>> Warning: If your computer is firewalled, UDP Scanning can take a LONG time (6-8 hours common and days rarely). We recommend you try the following: If you change your firewall packet filtering method from DENY to REJECT, you will allow UDP scanning in GREATLY reduced time. On a fast connection, an entire 65534 UDP port scan can finish in under a minute. By REJECT we mean, "send back an ICMP unreacheable message to the scanner". By DENY we mean, "Simply drop the packet without informing the scanner". DENY causes LONG scans. REJECT makes for short scans. BOTH give you equal blockage of hackers. There is a common misconception floating around the net that DENY gives you "stealth" ports, meaning, you don't show up on hacker scans, but this is not true. Current scanning methods very clearly show when a computer is trying to hide itself. A truly absent computer will cause the internet provider's router to send back a "node unreacheable" ICMP message to the scanner but a stealthed computer doesn't do that and is painfully obvious to even a beginner hacker. <<END EXCERPT>> I don't really see where I can go about controlling my packet filtering method from DENY to REJECT in NIS 2003...maybe it is a hidden or default firewall rule that I can't seem to get to...I see no references by such name in the "Options" set of tabs...particularly "Firewall" that relates to this, unless it is by another name. Can somebody help? Thanks so much.