However, my recollection is that by having UPnP enabled ends up being a security risk considering that you are basically allowing anything within your device to open ports directly into your firewall. If you end up having malware on it, then it can quickly spread to the remaining (vulnerable) devices in the network.
Unfortunately, I didn't pay enough attention to its consequences when I was running a node in the past
[SMH] until I read your comment and did some Googling... It appears that you're right
[it looks like I'll be sticking with outbound connections whenever I decide to run a node again (thank you)].
- For those who might be interested, here are two old threads (#1 and #2) with interesting arguments about it.Glad that I could help. UPnP and DMZ are one of those things that shouldn't ever be touched considering the security holes that they end up creating in a user network.
I have to say that I had never heard of having to pay a premium for port forwarding capabilities, but I reckon that nowadays ISPs are always looking for ways to charge customers functions that should be made available freely.
In case some guidance is needed for whoever is reading this, I always share this[1] website for people looking to port forward - it has a large array of suppliers and it covers the needed steps for someone to successfully port forward (assuming the ISP isn't greedy...).
[1]
https://portforward.com/router.htm