To protect against any hacking attempts, you may only wish to allow access to PCs that are on the internal range if IP addresses.  Anybody trying to log on from a PC that is on an external IP will be denied access.