> I guess my question was is it advisable to only allow active ftp .... ? Or > is that just not a reasonable idea ? Or does the Related option make > passive "safe" (ie, don't have to open a load of ports). Netfilter is stateful, it will open the ports as needed. Gr, Rob
