There are 9 remote & 1 central locations in our network. As you knew, these routers have ADSL port as a wan interface. We already configured all of these 877 routers via SDM. Basic firewall was enabled in this config. And we permitted 3389 port for remote desktop connection in NAT in central router. Remote locations cannot connect to the internet. They only connect to central office (p2p) for executing application in central office.
But, when we enable basic firewall in this configuration other locations cannot connect to central office for executing the application.
1. How can remote locations connect to central office while basic firewall is enabled ?
2. How can we protect the central office router from ping, telnet, and etc. ?
Thanks & regards