Tue Feb 07, 2017 6:31 pm
Glad you got it working, but from a security standpoint, that scares me. If you are going to allow all addresses on the internet to access the router, at the very least, change the services port to a non-standard port. WinBox will happily connect to non-standard ports - and ALWAYS use secure mode. A couple more steps would be either a VPN of one sort or another, or port knocking. Add a set of rules to detect and drop port scanners too.
I am using a non-standard port, and port knocking, and I log attempts to access the router on the standard WinBox port. It's entertaining to see how many attempts there are on the standard WinBox port. Of course they are dropped since they are the wrong port. I also log attempts on the relocated ports that are not allowed because they did not correctly set up the port knocking. I've never seen a hit there EXCEPT when I messed up the port knock procedure.