INFRA-5 Firewalls

What is INFRA-5 firewalls control?

Infra-5 firewalls control is a network security system that monitors and controls incoming and outgoing network traffic based on predetermined security rules. This is an essential part of every organization’s network, and TrustCloud automates this control.

Evidence of “deny all” rules and NAT (Network Address Translation) rules is required.

Available tools in the marketplace 

Tools

No tool recommendation is made for this section.

Available templates

TrustCloud has a curated list of templates, internally or externally sourced, to help you get started. Click on the link for a downloadable version.

• N/A: no template recommendation

Control implementation

NOTE: This control is 100% automated by TrustCloud. Connect your system to enjoy the benefits of automation.

All organizations have an understanding of firewall implementation. There will be no further instructions on implementation.

What evidence do auditors look for?

Most auditors, at a minimum, are looking for the below-suggested action.

1. Provide the firewall rules (Block, Allow, deny, etc.)

Evidence example

For the suggested action, an example is provided below:

1. Evidence of “deny all” rules and NAT (Network Address Translation) rules is required.
   The following screenshot shows the rules for a specific firewall.
   (Google search results of “deny all firewall rules”)