Block outsiders from accessing port 80.

Hello all

I have installed IIS 5.1 and I want to block everybody that does not belong to my domain to access my web sites. Unfortunately the organization I am working for does not have a central firewall solution so I am almost completely exposed. I have installed a
ll latest updates and I am using Symantec Antivirus Corporate Edition 8.1.

To block everybody from outside I stopped Anonymous Access to my web sites (IIS default site properties-Directory Security- Clear check-box Anonymous access) and I checked only Integrated Windows authentication.

I watch the IIS log everyday and I see foreign addresses trying to access my port 80 in bizarre ways e.g.:
- 80 HEAD /MSADC/root.exe /c+dir+c:\ 401 5 194 130 0 HTTP/1.0
- 80 HEAD /_vti_bin/..%5c..%5c..%5c..%5c..%5c../winnt/system32/cmd.exe /c+dir+c:\ 401
- 80 SEARCH /� ± ± ± ± ������ (many or them) - 401 5 4644 67022 78 HTTP/1.1

I hope that as long as these requests get a 401 answer they are blocked. Still I am very worried about this and I don’t know how to stop this situation.

I am quite new at this and my Internet Connection Firewall is not enabled because I access a lot of things on my file servers and I don’t want that to be stopped.

Could somebody help me with this?

Thank you all for your time.

PS: could you please suggest links for reading about controlling ports on XP Pro