I agree with Scott with this caveat...some firewalls will lock down the outbound >1024 to prevent application hijacking. So in these cases you have to allow the apps outbound privileges.
But "network-security" firewalls don't know about "applications", only protocols, ip's, ports.
That's why I mentioned a "host-security" firewall, like Zone Alarm, which controls applications and OS services (and malicious stuff) that are attempting egress. SA also has per-block logging.
Len
_____________________________________________________________________ http://IMGate.MEIway.com : free anti-spam gateway, runs on 1000's of sites
To Unsubscribe: http://www.ipswitch.com/support/mailing-lists.html List Archive: http://www.mail-archive.com/imail_forum%40list.ipswitch.com/ Knowledge Base/FAQ: http://www.ipswitch.com/support/IMail/
