[PCI DSS 1.x] 1.3 Prohibit direct public access between the Internet and any system component in the car

[READ-ONLY] Archives [RETIRED] PCI DSS v.1.x Questions and Answers Build and Maintain a Secure Network
1

1.3 Prohibit direct public access between the Internet and any system component in the cardholder data environment.

1.3 Examine firewall and router configurations, as detailed below, to determine that there is no direct access between the Internet and system components, including the choke router at the Internet, the DMZ router and firewall, the DMZ cardholder segment, the perimeter router, and the internal cardholder network segment.

2

Firewall Translation

Is a public facing IP that is translated to an internal ip for exchange services considered a violation of this rule?

Very new to any of this… getting the round around from auditor & my network consultant as to whom is correct. Both say they are of course.