said by jaynick:
Yes, that's the problem with that.
Yup. Well port forwarding is just a limited workaround to NAT. The intended purpose is to allow servers to appear as though they're directly on the internet (i.e. open to all comers).
Again if you secure VNC (or whatever) then any bad guys won't be able to get into your LAN box although any and all requests will get to that box (and rejected if you have good authentication).
The choice is up to you.--
Don't feed trolls--it only makes them grow!