I have a simple setup that passed all leaktests listed here. http://www.firewallleaktester.com/ The two programs that I used are 1. Netop Firewall 2. Process Guard Very simple setup. 1. Netop goto Tools/ Options and make sure that Enable DNS Auto resolve is unchecked. 2. XP goto Start/ Run/ "msconfig" / Services and uncheck DNS Client. 3. Process Guard goto the PROTECTION tab click Add Application Add both iexplore.exe and firefox.exe make sure under the box "Protect this application from" [modification] is checked. [reboot system] One note. When running the leaktest against your system, allow PG to run the programs. If you get a popup from the firewall, click do not allow. I like Netop firewall due to the fact that it is the only driver-centric firewall and in theory your system is protected during startup. More importantly, the only way to turn off the firewall is to uninstall and reboot system.