http://msmvps.com/blogs/bradley/archive/2008/06/23/unfettered-access-to-port-3389.aspxI&#39;m reading this post and it&#39;s talking about how to run the wizard for VPN but at the end, is it just me or does it suddenly change over to using straight RDP to the server? Configure Windows Small Business Server 2003 R2 Remote Access | TechenCommunityServer 2008.5 SP2 (Build: 40407.4157)http://msmvps.com/blogs/bradley/archive/2008/06/23/unfettered-access-to-port-3389.aspx#1637207Tue, 24 Jun 2008 11:11:49 GMTd67277c4-116b-43f1-b688-e9ef184ea916:1637207petieg<p>did you ever try the free SecureRDP? Simple, easy lockdown of rdp by ip address, computer name, etc. </p> <div style="clear:both;"></div><img src="http://msmvps.com/aggbug.aspx?PostID=1637207" width="1" height="1">http://msmvps.com/blogs/bradley/archive/2008/06/23/unfettered-access-to-port-3389.aspx#1637206Tue, 24 Jun 2008 10:44:40 GMTd67277c4-116b-43f1-b688-e9ef184ea916:1637206the_angry_angel<p>In some instances it maybe politically troublesome to lock down RDP. In these instances, where you have no choice there are additional steps you can take to help, aside from altering the port number.</p> <p>In the given example tsgrinder script you will notice that the username argument doesn&#39;t appear to be used, which means it&#39;s grinding against the username &#39;administrator&#39;. Many brute attacks rely on this account, so renaming the administrator account to something else helps immeasurably. </p> <p>Secondly setup your server/domain to log failed logons and setup some monitoring. If you get it setup right you can take automated action to close 3389 to the attacking IP(s), or you can simply inform the admin via email who can take manual action to prevent the attack. </p> <div style="clear:both;"></div><img src="http://msmvps.com/aggbug.aspx?PostID=1637206" width="1" height="1">