Firewall mods for wireless LAN and NTP

[Algenon]

I have a laptop running Gentoo 2005.1 and a desktop (also Gentoo). The laptop is running on a wireless LAN to a D-Link router. The router is connected to a cable modem and ethernet cable to the desktop unit, thus both machines can access the internet. Both machines are using iptables for a firewall, the desktop has NFS ports locked using the excellent tutorial at https://forums.gentoo.org/viewtopic-t-77748-highlight-statd.html. I have been using the iptables config below (which came from this forum) for a couple of years now with no signs of any attempt by malicious users to break-in. However, I wish to open up the desk top machine for file access using NFS. My plan is this. Keep the laptop firewall as is. Block ports for NFS 2049, quotad, status and mountd at ports 32764-32767 in the router to prevent internet access (allowing only LAN access) and open up the desktop machine ports for NFS, quotad, status and moutd. I am not really sure how to do this and would it leave my desktop machine vulnerable? Any advice would be welcome.

iptables set up as below.

[Dlareh]