This isn''t a shorewall question per se, but I saw a thread from July with the subject "Rules for PPTP?" and had a question that was similar: I am trying to use PPTP to connect to a remote server and can connect successfully, because I have been using VNC over the connection for a few weeks now (I know that it''s going over the PPTP tunnel because I''m using input filters in RRAS to block ports 5800 & 5900 on the server, and a telnet to those ports fails over the Internet). Anyway, I''m trying to connect via NBT to the server so that I can see shares, etc. but I''m unable to. I''ve done quite a bit of troubleshooting but haven''t been able to figure it out... My configuration: The remote server is an NT Server 4.0 SP6a with IIS and RRAS using PPTP, input filters: DENY source-ANY destination-ANY proto-TCP sport-ANY dport-135,139,5800,5900. RRAS hands out addresses from the pool 192.168.1.0/24 and only allows access to the machine itself, not to the network. The RRAS input filters only affect the physical adapter, not the PPTP adapter. The local machine is behind a dachstein firewall with the PPTP module loaded & works great. I''ve unchecked "use default gateway on remote network" so that I can do other things on the LAN while I''m connected to the remote server. As I mentioned, I can''t connect via NBT. I can even telnet to port 139 through the PPTP connection and it accepts the connection, but I''ve tried the following, trying to connect to shares on the remote machine: net use \\192.168.1.1 * /user:administrator -> Returns "System error 53 has occurred, the network path was not found" nbtstat -A 192.168.1.1 -> Returns "Host not found." I found a Microsoft article that seemed to relate to it: http://support.microsoft.com/default.aspx?scid=KB;en-us;q176321 Any ideas are much appreciated... -Blanton _____________________ Blanton Lewis Antioch Community Church antiochcc.net