I need to establish 3 rules for incoming requests one group 10.151.24.4 for development one group (two addresses) 10.152.1.21 and 10.152.1.5 for testing one group 32.85.58.41 and 42 for production I must allow ICMP, TELNET and the following TCP ports (incoming) 1433, 8065 8090, 1521, and 300 If you have already answered a similar question, please refer me to the FAQ and I apologize for contributing to the traffic. My firewall does its job just fine, no one can get in, my problem is I need to let the above in. William