I had stopped using KPF 4.1.2 a bit ago because of problems with startup-sometimes it didn't. After reading that KPF 4.2 was near completion, I decided to try it again. No startup problems, everything seemed to work well. Imported my KPF 2.1.5 ruleset without incident, and used it for a few days. Decided to modify some of the rules. SURPRISE. KPF 4.2 does not process the ruleset properly-does not appear to stop scanning the rules when it finds a "deny" rule, but keeps on looking for an "allow" rule. I use avast! with proxies for virus scanning web and mail traffic, and have rules to allow browsers to access the proxy, deny access to those not named previously in an "allow" rule. Kerio ignores this and just sends out the browser connections via the later proxy rule, even it I change the Firefox "allow" to "deny". Tried with several programs, and found things only worked for deny if there was not a later rule that allowed. Unusable and dangerous. Try it yourself.