I have a remote web server that I access using Terminal Services. I noticed (in the event log) that someone is attempting to access the machine. There are numerous "invalid logon" attempts (every second).
This is a W2008 server. What is the best way to secure this? Is there a way to automatically block an IP that has repeated bad logons?
I need to be able to access this server from any location. Is there a certificate method?