Hi. I set up a RB951G-2HnD with default configuration, then i deleted most rules and created my own firewall, denying ports like 22,23,21 and so on.
For example i see in rule #28 that winbox 8291 port is using traffic constantly when i am connected, but i do not see any 80,443 traffic going though the router
I disabled all input rules and output in hoping that i won’t be able to browse the internet but i am. In connections tab i see 443 traffic connections are established.
Your image is unavailable to us.
Also, without your configuration, we would be guessing. Please export and post your configuration.
To export and paste your configuration (and I’m assuming you are using WebFig or Winbox), open a terminal window, and type (without the quotes) “/export hide-sensitive file=any-filename-you-wish”. Then open the files section and right click on the filename you created and select download in order to download the file to your computer. It will be a text file with whatever name you saved to with an extension of .rsc. Suggest you then open the .rsc file in your favorite text editor and redact any sensitive information. Then in your message here, click the code display icon in the toolbar above the text entry (the code display icon is the 7th one from the left and looks like a square with a blob in the middle). Then paste the text from the file in between the two code words in brackets.
Traffic passing through the router does not go through the Input nor Output chain. It goes through the Forward chain.
The Input chain is for traffic that has the router as it’s destination (your WinBox traffic for example), and the Output chain is for traffic that is originated by the router.