Filter Remote Access

[JoelM]

I have a new client with a voip phone system. They have 1 remote location with 1 phone that connects back in. This is done with port forwarding. Currently they have a Mikrotik router that is configured to only allow the ports to be forwarded if they come from the specific ip address of the remote location.
So the Mikrotik is able to filter incoming connections by location. (I hope I am describing this correctly).

The company that set this up still provides their T-1 line but wants to no longer be responsible for the Mikrotik & I don't have the time to learn their os.

I am looking for a router solution with a GUI that will allow me to configure incoming firewall connections to allow specific incoming ports to connect only if they are coming from specific ip addresses.

I may not be using the correct words or description as this is the first time dealing with this type of configuration. As it was described by the company that setup the Mikrotik the reason or need is that someone else could easily connect and run up thousands of dollars in phone bills before anyone would even know it was happening so therefore the need to limit where the connections to the phone system come from.

Does anyone have an idea of a decent quality router that I could setup and learn without having to learn code?

Thanks in advance & I'll try to answer any clarification questions I can.

 

[fencepost]

There's not really a huge amount of setup involved for what you described. The Mikrotik doesn't have any kind of UTM, and hopefully there's not a lot being punched through it.

The piece you're looking for to do the passthrough is probably on the NAT page (in Winbox, IP, Firewall, then second tab) and probably has a hardcoded IP address. You can also define an address list (Addresses tab) and use that list on the rule instead of a single IP or netmask.