http://www.networkmagazine.com/shared/article/showArticle.jhtml?articleId=26100665 Microsoft's new Internet Security and Acceleration (ISA) Server 2004 firewall includes Application-layer protection to detect attacks inside HTTP traffic and other popular protocols. The problem is that Microsoft doesn't actually provide any attack signatures-you'll have to get them through third-party providers such as isatools.org or write them yourself. "third-party provider"? ..ya think a little research might have helped? Jim Harrison MCP(NT4, W2K), A+, Network+, PCG http://www.microsoft.com/isaserver http://isaserver.org/Jim_Harrison http://isatools.org Read the help, books and articles!