> I've been seeing AddressScan alerts, but when I check conn.log, I can't > find the corresponding entries. In general with these sorts of problems, it helps hugely if you can supply a trace that reproduces the problem, and also summarize the command line / analysis you're using. Vern