Howard,
I'd have to see the rest of your rules, but here's an excerpt from my fc3 box for incoming ssh. -A RH-Firewall-1-INPUT -m state --state ESTABLISHED,RELATED -j ACCEPT -A RH-Firewall-1-INPUT -m state --state NEW -m tcp -p tcp --dport 22 -j ACCEPT i.e. you still need the 2nd rule. Actually I presume you have something like this, but it's worth mentioning/asking. Have you tried logging all packets before you reject them? What protocol are you talking about? Matt -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
