IIRC, the NT stack is not based on the BSD one. It has been completley rewritten from scratch. Windows firewalls can be implemented in a few different ways. There is a winsock hook, which is quite frankly laughable in terms of security, there are several other means of hooking into the TDI and NDIS. There is also an ip filter driver which was introduced in Windows 2000 (but dropped there after). There is then the more secure, but more complex methods of writing kernel level drivers either sandwiched between NDIS as an intermediate driver, or implementing the new windows technology of Windows Filter Platform / Winsock Kernel which Alex Ionescu has brought to my attention recently. None of the above methods can be derived directly from the BSD implementation. ************************************************************************ The information contained in this message or any of its attachments is confidential and is intended for the exclusive use of the addressee. The information may also be legally privileged. The views expressed may not be company policy, but the personal views of the originator. If you are not the addressee, any disclosure, reproduction, distribution or other dissemination or use of this communication is strictly prohibited. If you have received this message in error, please contact postmaster(a)exideuk.co.uk <mailto:postmaster@exideuk.co.uk> and then delete this message. Exide Technologies is an industrial and transportation battery producer and recycler with operations in 89 countries. Further information can be found at www.exide.com