|
Integrator Notes
| • | Per PCI_DSS 1.1, servers that you deploy your production application on must have a hardware firewall. The processes for setting the firewall must be documented and the firewall settings must be reviewed and tested on a quarterly basis. |
| • | Per PCI-DSS 1.2, build a firewall configuration that restricts connections between untrusted networks and any system components in the cardholder data environment. |
| • | Per PCI-DSS 1.3, prohibit direct public access between the Internet and any system component in the cardholder data environment. |
| • | Per PCI-DSS 1.4, install personal firewall software on any mobile and/or employee-owned computers with direct connectivity to the Internet (for example, laptops used by employees), which are used to access the organization’s network. |
Note: An “untrusted network” is any network that is external to the networks belonging to the entity under review, and/or which is out of the entity's ability to control or manage.
|