Mr. Chapman, and all, > What about this? > > iptables -t filter -A INPUT -p tcp --dport 25 -m string --string HTML > -j REJECT --reject-with tcp-reset Ahem. you _are_ aware that such a filter would nicely filter out the very e-mail which proposes it? Don't try to solve application service topics in packet filters. Really. best regards Patrick