I am being wormed. And while I am comforted by the fact that my Windows security seems pretty solid, my server gets hit every sec at times. I want to block this traffic at the router. I run POP3, SMTP, and RDP, Outlook Web Access. I have some filters set up on the router that seem to do a good job, except for all these failed logon attempts. grc.com reports first 1056 ports as all closed.
So...how should I make sure that my router is locked down aganst the worm attacks? What more can I do in general?
Specific help directed toward Netopia filter sets would be appreciated. If it makes sense to break this question down into more specific pieces, let me know.