Example use case, port knocking for allowed dynamic IP via port knocking such as from a phone or any other dynamic public network, using tikapp or winbox/webconsole..etc, with a limited user account group set.
Other than writing a script to emulate this with "allowed ip" that's already there, it would be nice addition albeit minor "security", more so an obfuscation technique but couldn't hurt however.
edit;
I guess this would be pointless as this;
Code: Select all
/ip firewall filter rule add action=accept chain=input comment=Winbox dst-port=8291 protocol=tcp src-address-list="address list here"