On Thu, 12 Aug 2004, scty Library wrote: > No, that did not work either. Allow me to demonstrate this one: [root at emyn ~]# ping 127.0.0.1 PING 127.0.0.1 (127.0.0.1) 56(84) bytes of data. 64 bytes from 127.0.0.1: icmp_seq=0 ttl=64 time=0.049 ms 64 bytes from 127.0.0.1: icmp_seq=1 ttl=64 time=0.047 ms --- 127.0.0.1 ping statistics --- 2 packets transmitted, 2 received, 0% packet loss, time 1002ms rtt min/avg/max/mdev = 0.047/0.048/0.049/0.001 ms, pipe 2 [root at emyn ~]# iptables -A INPUT -d 127.0.0.1 -p icmp -j DROP [root at emyn ~]# ping 127.0.0.1 PING 127.0.0.1 (127.0.0.1) 56(84) bytes of data. --- 127.0.0.1 ping statistics --- 2 packets transmitted, 0 received, 100% packet loss, time 1002ms [root at emyn ~]# iptables -L INPUT -xnv Chain INPUT (policy ACCEPT 29425 packets, 14876789 bytes) pkts bytes target prot opt in out source destination 2 168 DROP icmp -- * * 0.0.0.0/0 127.0.0.1 [root at emyn ~]# iptables -D INPUT -d 127.0.0.1 -p icmp -j DROP [root at emyn ~]# ping 127.0.0.1 PING 127.0.0.1 (127.0.0.1) 56(84) bytes of data. 64 bytes from 127.0.0.1: icmp_seq=0 ttl=64 time=0.050 ms 64 bytes from 127.0.0.1: icmp_seq=1 ttl=64 time=0.047 ms --- 127.0.0.1 ping statistics --- 2 packets transmitted, 2 received, 0% packet loss, time 1017ms rtt min/avg/max/mdev = 0.047/0.048/0.050/0.007 ms, pipe 2 It should be the same for you. Kind regards, -- dag wieers, dag at wieers.com, http://dag.wieers.com/ -- [Any errors in spelling, tact or fact are transmission errors]