So, I recently got a public static IP from my ISP . I was looking around on MicroTik's torch function which shows IPs that are trying to connect to my router and I noticed some strange IPs trying to connect to port 23 (telnet). Most of them are from India, two from China and one from Malaysia. I know that public IPs are much more vulnerable to attacks than private IPs.
I'm on latest RouterOS version 6.44.3 and had telnet feature on my router disabled.
Edit: Some new IPs that are also doing the same. 197.0.5.137 (Tunisia).
Edit 2: I added some bruteforce protection firewall rules to my router using this guide. Some of the above IP Addresses are showing up on filter address list from time to time. Most of the IPs that show up are on same block as my Public IP (103.69.X.X)
Edit 3: Seems like atleast some of these IPs were trying to bruteforce my router as they made into black list.
I'm on latest RouterOS version 6.44.3 and had telnet feature on my router disabled.
Edit: Some new IPs that are also doing the same. 197.0.5.137 (Tunisia).
Edit 2: I added some bruteforce protection firewall rules to my router using this guide. Some of the above IP Addresses are showing up on filter address list from time to time. Most of the IPs that show up are on same block as my Public IP (103.69.X.X)
Edit 3: Seems like atleast some of these IPs were trying to bruteforce my router as they made into black list.
Last edited: