Alright So I've got a remote network I want to secure on certain LAN IP's within the network. specifically 192.168.1.105 and do the same for the web administration panel in the router. If my IP was static it would be alot simpler to do for sure. But since its not I want to use dynamicDNS urls that I've got set up to update with my router here.

basically there is an IP camera system I don't want accessed externally by anyone but me at my house. although there are various questions that come up. whether it would resolve the dyndns or whether it would be considered invalid and not be functional.

Anomaly was mentioning something about SSH tunneling which I think if it works like I've seen you could just set up an Iptable configuration to where it drops all external connections to that LAN ip. and have the computer that records remotely tunneled into the network. Although I'm unsure.

Hmm I'm curious though is there a way that whenever a unsuccessful attempt to connect via SSH occurs it can leave something somewhere? Like in the log or syslog or something.

Also if I uncheck the allow any remote IP option under remote access on the router can I add something to the IP tables that will allow me to access it but instead of an IP use a dyndns?

I've already got it figured out Although I think you added steps I don't need?

I just took the cameras out of the DMZ forwarded ports 80/9002 which are http #1 and #2 for the cameras by what I've set up. and then all I do is just 192.168.1.105 and BAM login prompt.

WRONG. I those are the ports I set up with putty not the router. derp.
and i've tested trying to get at the cameras I can't. I have to be tunneled in.

No I have nothing of the such done lol. I have forwarded NOTHING. In putty I set up dynamic ports. I have NO port changes on the router