Hi,
I recently set up VPN on my hAP AC^2 to get access to monitoring/NAS from the world. From what I heard this is the best solution to access private environment insted of exposing it directly to the internet via public IP. I am not networking pro so I used new Mikrotik Home app and checked "enabled" under VPN option. After that I edited L2TP and VPN secrets and changed them to 12+ characters, nondictionary passwords and also edited standard vpn profile name used to login to some uncommon one. Everything is working fine, connection from my Android phone is flawless, but in logs I see a lot of new red lines, which makes me a bit sceptic. I know there will be attempts like that, but I want to be sure I am in comply with best practices.