When I run the Shields Up scan it comes up clean even the 1056 port one, however with PCFlank on the quick scan it shows 135 open. Although it is getting the right address could it be looking at the ISP instead? I did try this port specifically with GRC and said it was stealthed. I have a rule in Kerio 2.1.5 to block it. Any ideas please.