3.13.5

  • Requirement

    Implement subnetworks for publicly accessible system components that are physically or logically separated from internal networks.

  • Discussion

    Subnetworks that are physically or logically separated from internal networks are referred to as demilitarized zones (DMZs). DMZs are typically implemented with boundary control devices and techniques that include routers, gateways, firewalls, virtualization, or cloud-based technologies. [SP 800-41] provides guidance on firewalls and firewall policy. [SP 800-125B] provides guidance on security for virtualization technologies

More Info

  • Family

    System and Communications Protection
  • DoD Scoring Methodology Points

    5

NIST 800-171A Assessment Guidance

CMMC Training

Our CMMC Overview Course simplifies CMMC. Enroll so you can make informed decisions!