(I am posting the same message to Phant0m's forum and the LnS forum - my apologies if this causes offence but I'm not sure whether some questions apply to LnS or the Phant0m ruleset.) Hi Just this evening I bought the Phant0m ruleset. I am on a trial of Look n Stop and so far I am very impressed with both LnS and the ruleset. I administer several networks and I intend to buy a number of licences once I get all the newbie issues sorted out! (I was prompted to try LnS by the good advice of Stem, local firewall mod!) I have some questions. First of all my network is as follows: 1) I am using a Vodafone Mobile Broadband USB modem (Huawei 220), which appears as a WAN (PPP/SLIP) adapter, and appears to LooknStop as a WAN Miniport adapter, with a dynamic MAC address, different from the physical MAC address of the USB modem. 2) The modem gets a non-routable dynamic IP address of 10.xxx.xxx.xxx from the ISP, a subnet mask of 255.255.255.255, and two DNS servers also in the private IP address space - 172.30.xxx.xxx and 172.31.xxx.xxx. (This means that many different users near the mobile cell actually share one public IP address, which has caused problems with Spam database blacklisting and suchlike). 3) For some reason we also get two WINS servers addresses - 10.11.xxx.xxx and 10.11.xxx.xxx. 4) When I install LnS I have to disable the 10.xxx.xxx.xxx network in Advanced Options so that the firewall is correctly bound to my USB modem. 5) I use the ad-blocking software proxy Privoxy for my web HTTP and HTTPS browsing. All my browsers are configured to go through this local proxy at 127.0.0.1, port xxxx. 6) I use the local mail server Hamster Classic for my POP3 email, and also the local software proxy POPfile. This means my mail client goes to the local Hamster mail server at 127.0.0.1, and the local mail server goes to the local proxy POPfile, also at 127.0.0.1 (but bound to a different port), and finally POPfile goes to my ISP servers for mail collection. Sorry if this sounds complicated but it gives me great filtering control over my email and web browsing! 7) When I install Phant0m's ruleset v8.003 I immediately have problems connecting to the internet. In order to connect I need to disable the second rule - "+Ingress Filters - Internal host Loopback addresses, They should never appear from outside a host." The logfile shows that the problem is a DNS problem - source port on the internet is 53, but presumably the Privoxy proxy is causing LnS to see this as an internet packet coming from localhost? How do I deal with this problem? Obviously my software setup needs localhost working properly but I also want LnS filtering properly at 127.0.0.1, especially because I have a local mail server on localhost. I would also like advice on excluding all traffic coming from the 10.xxx.xxx.xxx and 172.xxx.xxx.xxx subnets, except of course that which I require from my ISP. And finally I have a private LAN at 192.168.xxx.xxx, with a Unix file and print server providing DHCP and other services to my small local network. Again, advice on tightening the ruleset for this LAN segment is welcome. Many thanks. I'm sorry it is long-winded but I think I need to explain in detail what is going on, in order to get precise and relevant help. Happy Easter. Gerard.