Remote Desktop security - Win XP 64


Recently I’ve been forced to use Remote Desktop and I’m wondering how to secure my connection.
I’ve read several guides and found out I should limit port 3389 (or another one which I define) to receive only form one defined IP address. How to accomplish this in CIS? I have some general idea myself but I would appreciate professional advice much. Thanks in advance.

firewall rules>global rules>source IP: the one you’re connecting from, destination port 3389; open in/out