Show us what you have... Put a rule before the others where it's source address is 192.168.10.10 and there IS NO destination port.. then it'll allow anything from this machin with the correct remaining rules if any.. -----Original Message----- From: netfilter-admin@xxxxxxxxxxxxxxxxxxx [mailto:netfilter-admin@xxxxxxxxxxxxxxxxxxx]On Behalf Of Payal Rathod Sent: Wednesday, August 27, 2003 6:06 PM To: Netfilter ML Subject: allow ll for one thru firewall Hi, I am allowing onlyftp,dns for all people on my LAN. Now there is one IP (192.68.10.10) for whom i want to allow anything. What should b done for this?This particular IP canuse htp, fpanythingfor that matter. How should my rule-set be formatted? Can anyone advice? With warm regards, -Payal -- For GNU/Linux Success Stories and Articles visit: http://payal.staticky.com