Outpost firewall Pro, with all adapters set tp netbios and trusted, Disable all plugins and leave it on rules mode. Then run CHX-i and add the standard rules to make it secure like the tcp in except syn, all udp in,icmp 0 0 in, and add rules for the external nic blocking in and out 135,137,138,139,1025,445 and then add a rule that will not conflict that when enabled will allow all TCP in and out - EXCEPT for the rules that are specifically blocking ports . . Now let me explain this. What this does is keep you secure just as a NAT router with firewall would. You have to "forward" the ports kind of "i know its not the same but for the sake of argument and beginers its forwarding them". You now have outpost for outbound control PLUS if you like me use MSN and have trouble with forwearding the ports and still file transfers go Ludacrisly slow you enable the rule that allows all inbound , Then outpost will stealth all closed ports as normal, and CHX-i will deal with icmp and the closed ports. This way you are still invisible closed ports are stealth and open ports will work as normal. What do you think to this? I have been working on this method for 2 days and its about done i think , I forgot to say i allow all icmp on outpost too since CHX deals with that.