|My wireless router allows me to reserve IP addresses by MAC address, so I can guarantee that the same two devices that need access will always have their own, same IP address.|
Okay sounds good you have that covered (the reserved IP and MAC give you double security, make sure others can not logon or have no permission to connect to the port where the server is on, I have no picture of the schematics so I dunno who else can be on the netweork doing other things)
Here's what I'm thinking: A non-broadcasting wireless router with NAT and WPA2, a very small list of permitted MAC addresses makes a reasonable environment. Two devices with need to see the fileserver will always have the same IP address assigned, tied to each device's MAC address.
You mean the Router does not advertise it's SSID, good too.
WPA2 is good too, solid security.
The server will employ windows native IP filtering facility and only respond to those two devices. The server will also be running Zonealarm to limit the type of activity permissible even further. Inside the firewall I'll run sort of antivirus. I plan to turn off any unnecessary services in windows once I determine what is necessary.
IP Filtering, extra security for the server
Zonealarm is not one of my favorites but if it works for you that's fine.
Watch out with killing services, but I think you know what you are doing
Lotsa security, bit overkill IMO but it'll work
What's on the server, your secret recipe for Appelpie ?? ;-)