I just configure RouterOS 4.1 and works fine, in addition to it, how can I access my router from another public address… is this possible or any rules to configure for this?..
If it has a public IP, just use winbox, otherwise, you will have to forward the winbox ports in. 
Thanks for ur response.. can you please explain details?
Anyone here.. I mean i need remote access solutions to my routerOS and usermanager…
Once again if you want more assistance please tell us more about you network topology! If MT router connected directly to internet and has public IP- then zero configuration! If it is behind some other router/firewall etc - then you should forward winbox ports!
Hi yancho, My router is directly connected to the internet and my router address is 196.220.4.158..pls tell me what to do next
Then you just need to connect to it just like you do with Winbox, just use that IP.
An online port scanner tool shows port 8291 closed on that IP.
Post your firewall configuration. There’s a possibility that your ISP is simply blocking inbound connections, in which case you could try moving service ports.
[admin@MikroTik] > ip firewall filter pr
Flags: X - disabled, I - invalid, D - dynamic
0 X ;;; place hotspot rules here
chain=unused-hs-chain action=passthrough
1 ;;; Drop invalid connections
chain=input action=drop connection-state=invalid
2 ;;; Allow esatblished connections
chain=input action=accept connection-state=established
3 ;;; Allow related connections
chain=input action=accept connection-state=related
4 ;;; Allow UDP
chain=input action=accept protocol=udp
5 ;;; Allow ICMP
chain=input action=accept protocol=icmp
6 ;;; Allow connection to router from local network
chain=input action=accept in-interface=!ether1
7 ;;; Drop everything else
chain=input action=drop
8 chain=forward action=jump jump-target=customer in-interface=ether1
9 ;;; Drop invalid connection packets
chain=customer action=drop connection-state=invalid
10 ;;; Allow established connections
chain=customer action=accept connection-state=established
11 ;;; Allow related connections
chain=customer action=accept connection-state=related
12 ;;; Log dropped connections
chain=customer action=log log-prefix=“customer_drop”
13 ;;; Drop and log everything else
chain=customer action=drop
[admin@MikroTik] > ip firewall nat pr
Flags: X - disabled, I - invalid, D - dynamic
0 X ;;; place hotspot rules here
chain=unused-hs-chain action=passthrough
1 chain=srcnat action=masquerade out-interface=ether1
[admin@MikroTik] > ip route pr
Flags: X - disabled, A - active, D - dynamic,
C - connect, S - static, r - rip, b - bgp, o - ospf, m - mme,
B - blackhole, U - unreachable, P - prohibit
DST-ADDRESS PREF-SRC G GATEWAY DISTANCE INTER…
0 A S 0.0.0.0/0 r 196.220.4.157 1 ether1
1 ADC 192.168.0.0/24 192.168.0.1 0 ether2
2 ADC 196.220.4.0/24 196.220.4.158
You are explicitly dropping connections from the WAN. If you want the world to be able to connect to particular ports on the router, add a rule between 6 and 7 allowing those ports, like so:
/firewall filter add chain=input protocol=tcp dst-port=8291 action=accept place-before 7
That would allow anyone in the world to connect to your router via Winbox, which listens on port 8291. Is that what you want to do?
If you’re going to run a firewall, you should probably read a book about firewalls and then the wiki articles on how firewalls work on RouterOS.
added still not working… what else?
Now port is open it should work.
Hi yancho, the router address is 196.220.4.158, try to access it and see what could have happen
Winbox connects and starts to download plugins but very very very slow.
Thanks Guys… after a fresh installation it works fine.. Thanks