Hi, Just ran a port scan on the external interface of ISA and get the following results: 25 smtp 53 domain 88 kerberos 110 pop3 135 epmap 139 netbios-ssn 143 imap 389 ldap 443 https 445 microsoft-ds 464 kpasswd 636 ldaps 1723 pptp Plus a few others Luckly at the moment the cisco router has an ACL on that only allows 25 through. What is the correct solution to stop it listening for these requests on the external interface (apart from port 25 ofcourse). Although it does seem to say "* BYE Connection refused" and drop the packets, I just find it werid that it has the ports are open in the first place? Anybody got any ideas? Kind Regards, Chris Bond