NET-04.1—Deny Traffic by Default & Allow Traffic by Exception
Weight: 10
>Control Description
Mechanisms exist to configure firewall and router configurations to deny network traffic by default and allow network traffic by exception (e.g., deny all, permit by exception).
>Cross-Framework Mappings
CMMC v2.0
NIST SP 800-171
Canada ITSP 10.171
SOC 2 TSC (Detailed)
NIST SP 800-171 Rev 3
NIST SP 800-171A Rev 3
NIST SP 800-207 Zero Trust
Ask AI
Configure your API key to use AI features.