Is it possible to implement security such that both a certain IP address and a keyname:secret are authenticated for a nsupdate command. If so how? allow-update works based on IP but tsig wirks based on keys. Charles A. Bodley Technician TF Logic "It's amazing what you can do with a kind word, provided you've also got a big stick." - Johnny and the Dead