i have phant0m's ruleset, but i checked the logs when the net did not respond and kept getting dns hits so I simply right clicked it and allowed port 53 and now it works. Something tells me it's not that simple to be safe. My question is..why isn't the DNS stuff set to work out of the box with such a customized ruleset?.. from what i gather it's not safe to blindly allow all traffic on that port. What am I missing here? Do I need to add my ISP's specific DNS server info to the rule? I hadn't come across anything about that on the forums if so. I wouldn't be sure what info to enter if I created the rule from scratch..whether to apply incoming and or outgoing, and know it's safe -- I don't want to defeat the purpose of LNS or the well thought out ruleset that admittedly go well beyond my understanding.