When protecting the boundaries of a network, the firewall must be placed between the private network and the perimeter router and the Demilitarized Zone (DMZ).

An XCCDF Rule

Details
Profiles

Description

The only way to mediate the flow of traffic between the inside network, the outside connection, and the DMZ is to place the firewall into the architecture in a manner that allows the firewall the ability to screen content for all three destinations.

ID: SV-251366r853652_rule
Version: NET0351
Severity: Medium
References: CCI-000262 CCI-002073
Updated: 5 days ago

Remediation Templates

Move the firewall into the prescribed location to allow for enforcement of the Enclave Security Policy and allow for all traffic to be screened.

When protecting the boundaries of a network, the firewall must be placed between the private network and the perimeter router and the Demilitarized Zone (DMZ).

Description

Remediation Templates

A Manual Procedure