Faraguti's Blog
Remote Access to Your MikroTik Router via WinBox

Remote Access to Your MikroTik Router via WinBox

Felipe Faraguti's photo
Felipe Faraguti
·

3 min read

MikroTik routers are known for their robust security features, and by default, they are configured to restrict WinBox access from the internet. However, there are legitimate scenarios where you might need to access your MikroTik router remotely using WinBox. In this guide, we'll walk you through the process of allowing remote WinBox access to your MikroTik router over the internet while maintaining security.

Step 1: Accessing Your MikroTik Router

Before we begin, make sure you're connected to your MikroTik router either through a direct connection or via a local network. You'll need access to the router's configuration settings through WinBox.

Step 2: Configuring Firewall Rules

  1. Open WinBox and connect to your MikroTik router.

  2. In the WinBox interface, navigate to IP > Firewall > Filter Rules.

  3. Click on the + icon to add a new rule. This rule will allow remote WinBox access.

  4. Change the Chain to input.

  5. Set the Protocol to tcp.

  6. In the Dst. Port field, enter 8291.

  7. Click on the Action tab and ensure that the Action is set to accept.

  8. In the Comment field, provide a descriptive name for your rule, such as "Remote WinBox Access."

  9. Click OK to save your rule.

Step 3: Rule Placement

Now comes the most crucial step to ensure that your new rule works correctly. The order of the firewall rules matters because they are matched from top to bottom, and the first matching rule is applied. In this case, we want our new rule to take precedence over other rules.

  1. Locate your newly created Remote WinBox Access rule in the list of firewall rules. By default, it will be at the bottom.

  2. Drag the Remote WinBox Access rule above the last "drop" rule from the default configuration. This ensures that the rule is applied before any rules that might block access.

Step 4: Testing Remote WinBox Access

With the firewall rule properly placed, you should now be able to access your MikroTik router remotely using WinBox over the internet. Here are some important things to keep in mind:

  • Ensure that your MikroTik router has a public IP address or is properly NATed to allow external access.

  • Always use a strong username and password for security.

  • Consider using VPNs or other security measures to protect remote access further.

In conclusion, while allowing remote WinBox access to your MikroTik router is possible, it should be done with caution to ensure the security of your network. Following these steps and maintaining a strong security posture, you can harness the power of MikroTik routers even when you're not physically present at the router's location.

routerfirewallmicrotik