Which principle should govern connections entering the network?

Unlock all questions

This demo includes only 20 questions. Upgrade to access hundreds of questions, flashcards, exam simulations, and disable ads.

Full question bankExam simulationsFlashcards
From $24.99Unlock all

Prepare for the PCI Approved Scanning Vendor (ASV) Test. Study with flashcards, multiple choice questions, hints, and explanations. Get exam ready!

Multiple Choice

Which principle should govern connections entering the network?

Explanation:
Think of inbound traffic through the lens of stateful filtering: you only allow traffic that is part of an already established connection. When an internal host initiates a connection to the outside, the return packets are considered part of that established session and are allowed. Unsolicited inbound attempts—new connections started from outside—are blocked unless there is an explicit rule. This approach minimizes exposure to external attack attempts and aligns with a deny-by-default stance common in PCI guidance. That’s why allowing only established connections is the best choice. Permitting all connections from trusted partners is still risky because a partner could be compromised or misconfigured. Blocking all inbound connections would prevent legitimate services from functioning. Removing firewall rules would remove essential protections.

Think of inbound traffic through the lens of stateful filtering: you only allow traffic that is part of an already established connection. When an internal host initiates a connection to the outside, the return packets are considered part of that established session and are allowed. Unsolicited inbound attempts—new connections started from outside—are blocked unless there is an explicit rule. This approach minimizes exposure to external attack attempts and aligns with a deny-by-default stance common in PCI guidance.

That’s why allowing only established connections is the best choice. Permitting all connections from trusted partners is still risky because a partner could be compromised or misconfigured. Blocking all inbound connections would prevent legitimate services from functioning. Removing firewall rules would remove essential protections.

More Multiple Choice Questions
Subscribe

Get the latest from Examzify

You can unsubscribe at any time. Read our privacy policy