I can make a vpn pptp, but I really don't want to get to that point.
I would, assuming this is a temporary situation, use this in combination with address list filter (allowing only listed IP addresses).
Are you sure the router isn't compromised? How are you doing remote (or do you have access?) management (hope you do not allow any management from the Internet interface)?
Who will be the VPN consumer(s)?
Yes, as you said, this is just temporal. I need to solve some things to get people working and then, find some time to jump into a brand new rb1100 that I have in the office and set it up from scratch. Imagine this situation...we have two mikrotik, one in the headquarters and the other one in a DataCenter, both have a 6.1 routeros version and in both cases, we have almost 200 filter and 200 nat rules and we use like, 35%, 40% of them, the other 65%, 60% are disabled AND, an importante percentage of that 35%, 40% are things that we don't use anymore. So, as I managed to get rid of this vendor during this year, I've had some talks with directors of the company and they said there was allright to start a configuration from zero in both locations, that's why I have 2 brand new mikrotiks pending to be configured, but, right now, I don't have the time to do it (and of course I won't do an export/import migration).
So, that's more or less the scenario.
I connect vía vpn pptp to my computer in the headquarters, then, using winbox, in my lan, I connect to the router of the headquarters, and, as there's an ipsec between both mikrotik, I can connect to the other mikrotik.
I have done some rules that blocks unwanted traffic. As my country is quite small, I could manage to add some address list and accept traffic only of the ip's I wanted (and some other stuffs).
The new vpn is going to be to a company that will work with us. They need to connect to a virtual server that's from us, in the DataCenter I was talking about earlier. So, as I don't want to give them another pptp vpn, I want to implement something with l2tp over ipsec or an OpenVPN solution.
Today I started the day searching for a tutorial or something to impement an OVPN solution, but again, steps, boxes, tabs, and thing that I don't have in my routeros version, so, it's the same thing with whatever secure vpn I try to configure...routeros version problem. I'm so outdated with this version that is so so so frustrating.