I couldn't find it in RFC 1700 but I think the easiest way is to attempt the authentication while logging the traffic on the firewall. Then look at the log and see what ports are being denied.. open them up and try again. Anyone know the actual ports/protocols used? I'd be interested in knwoing this as well. Thanks.