There have been some previous messages on the problems using Sygate Personal Firewall with Webshield. SPF has a flaw in that it does not recognize local proxies. So if you turn on Webshield, everything going out or in as http:// has a source of Webshield and is allowed by Sygate. If you want to avoid unknown programs accessing the web, set up your browser(s) to use an http:// proxy of 127.0.0.1, port 12080, and set up 12080 as the redirected http port in Webshield. Then all traffic from your trusted browsers will go through Webshield and show up in the Sygate log with a Webshield source, all https, ftp and other will go though Sygate normally,and any new program requesting http access will be challenged by Sygate as usual.