Standards Group:
YALE-MSS-12: Intrusion Detection
YALE-MSS-12.2: Use a network firewall to control traffic
Low Risk Endpoint
Not Required
Moderate Risk Endpoint
Not Required
High Risk Endpoint
Not Required
Low Risk Server
Required
Moderate Risk Server
Required
High Risk Server
Required
Low Risk Mobile Device
Not Required
Moderate Risk Mobile Device
Not Required
High Risk Mobile Device
Not Required
Low Risk Network Printer
Not Required
Moderate Risk Network Printer
Not Required
High Risk Network Printer
Not Required
Details
A network firewall is an appliance that can be used to control traffic and reduce the overall attack surface.
A network firewall can be combined with a host based firewall for added security.
Restrict all ports, protocols, services, and sources/destinations except for those that are required for the system to function. Document this information.
Log and control inbound and outbound traffic to protect against potential threats.
This standard is met if your system is deployed on the University network.