Our office Windows 2008 server and Windows XP workstations are connected to the internet through FiOS using the Verizon issued Actiontec MI424WR router. If we add some port forwarding rules to enable remote desktop sessions with certain workstations, what steps need to be taken on the router and/or workstations to prevent rogue connections to our network? What type of security (encryption/authentication) should be implemented?
We also want to open a particular port for an application on our server to communicate with client laptops through the internet. What steps should we take to mitigate risk to our server and prevent port/vulnerability scanning? Do we need to purchase a security appliance?
Thank you so much for your help with this matter.