Hi

I have set up my CISCO 887 ADSL router and it works for internet traffic i.e. machines on my inside network can get on the internet OK.
I have added a port forward for remote desktop on port 3389 to redirect to a local machine and this also works i.e. I can RDT into the machine in my network on 10.1.0.4.

What I need to do now is lock down the port forwarding ive set up on 3389 so it only accepts traffic from a single static ip address.

This is the config I have so far
Dialer ....
interface Dialer0
 ip address negotiated
 no ip redirects
 no ip unreachables
 ip nat outside
 ip virtual-reassembly in
 encapsulation ppp
 dialer pool 1
 dialer-group 1
 ppp chap hostname
 ppp chap password 0
 no cdp enable
!
Routing...
!
ip nat inside source list 100 interface Dialer0 overload
ip nat inside source static tcp 10.1.0.4 3389 interface Dialer0 3389
ip route 0.0.0.0 0.0.0.0 Dialer0
!
Access List...
access-list 100 permit ip 10.1.0.0 0.0.0.255 any

So what I think I need to do is to modify...
ip nat inside source static tcp 10.1.0.4 3389 interface Dialer0 3389
to something like
ip nat inside source static tcp 10.1.0.4 3389 xxx.xxx.xxx.xxx 3389 where xxx.xxx.xxx.xxx 3389 is my fixed IP i want to allow traffic from.

I have tried this any if I replace Dialer0 with an IP address, it just doesn't work.

If anyone has any ideas or links it would be much appreciated

thanks

Andy