Recently I set up port forwarding on my router (and a static IP address) so I could run Bitcomet. Today, as I've been sitting at my computer - my ZoneAlarm firewall has been popping up messages that it is blocking (inbound) access to the TCP port that I'd set up for bitcomet ( the port which I'd instructed my router to route to). (note that, prior to today I've not been keeping ZoneAlarm loaded, but have just decided to do so today) Bitcomet was NOT on at the time ... and were it not for the Zonealarm program, the access would have accessed that port on my computer. (For what it's worth, per WHOIS the attempt was made from an IP out of the country) My question is about security when you’ve forwarded a port. I’m surprised that my router did not block that access. Maybe I'm misunderstanding something somewheres about Routers, port forwarding etc? I thought I’d done everything fairly straight. In assigning the static IP address to my computer ... In my computer's Network Configuration area for the TCP/IP properties set up (for my nic) ... On the “IP Address” tab .... I assigned it a new IP address ... and kept the Subnet mask as it had been ... pretty straightforward. On the Gateway tab I added my Routers IP address as the Gateway On the DNS tab, I added the host and domain name ... and instead of putting in the IP of my Inernet Providers DNS servers, I just pointed the DNS setting back to my Router’s IP Address (because my ISP changes Servers/DNS addresses periodically) For the actual forwarding in the Router - I entered the port number (I’d set for bitcomet to work over) as the specified port for both the “private port” and the “public port” settings in the Router .... for both TCP and UDP. Question: Can anyone spot anything specifically that I’ve missed or set incorrectly that would allow inbound access attempts from the internet to make it to my computer’s ports ... apparently sliding right past my router?? Question: Am I not understanding what happens when you port forward? (in other words, port forwarding shouldn't allow inbound access to come right through my router to my computer should it?) Question: Is my current Port forwarding etc set-up a security risk?? Many thanx in advance for any help or ideas !!!