NIST 800-53 REV 5 • ASSESSMENT, AUTHORIZATION, AND MONITORING

CA-3(4)Connections to Public Networks

CMMC Practice Mapping

No direct CMMC mapping

NIST 800-171 Mapping

No direct NIST 800-171 mapping

Related Controls

No related controls listed

Practitioner Notes

This enhancement was incorporated into the base CA-3 control. It previously addressed connections to public networks like the internet.

Example 1: Configure your Palo Alto or Fortinet firewall with explicit rules governing what traffic is allowed between your internal network and the public internet.

Example 2: Deploy a web application firewall (WAF) like AWS WAF or Cloudflare in front of any public-facing web servers to filter malicious traffic.

More Assessment, Authorization, and Monitoring Controls

CA-1 Policy and Procedures CA-2 Control Assessments CA-2(1) Independent Assessors CA-2(2) Specialized Assessments