I understand we're in a feature freeze for 4.1 at this point, but I'm curious--since we're now logging denied packets in /var/log/messages, it seems like it would be good to have some way of viewing those logs in a somewhat more human-readable form. I notice that mail log analysis is included, which I think is a good idea, but how difficult would it be to add some sort of firewall log analysis? -- Dan Brown, KE6MKS, [EMAIL PROTECTED] "Meddle not in the affairs of dragons, for you are crunchy and taste good with ketchup."