Open Source PCI-DSS
- Home
- What is PCI-DSS?
- Requirements
- Requirement 1
- Requirement 2
- Requirement 3
- Requirement 4
- Requirement 5
- Requirement 6
- Requirement 7
- Requirement 8
- Requirement 9
- Requirement 10
- Requirement 11
- Requirement 12
Open Source PCI-DSS
1.3.1 :: Implement a DMZ to limit inbound and outbound traffic to only protocols that are necessary for the cardholder data environment.
Basically, this means you should use a DMZ to host an apache server using mod_proxy to talk with the backend applications. No application should have a direct socket to any server on the internet.