1.3.1 Implement a DMZ to limit
inbound traffic to only system
components that provide authorized
publicly accessible services, protocols,
and ports.
1.3.1 Examine firewall and router configurations to verify that a
DMZ is implemented to limit inbound traffic to only system
components that provide authorized publicly accessible
services, protocols, and ports.
The DMZ is that part of the network that manages
connections between the Internet (or other
untrusted networks), and services that an
organization needs to have available to the public
(like a web server).