Is there a way to create a rule that will ask an external application for a true or false value before allowing a new connection to be established? My idea is to simply not allow the incoming connection via the firewall until a two-factored connection has been validated. This way I am not restricted to what few two factor agents the vendor(s) have based on their application support. thanks - To unsubscribe from this list: send the line "unsubscribe netfilter-devel" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html