pci DSS Requirement #1 Secure Firewalls

1.1 Establish and implement firewall and router configuration standards
1.2 Build firewall and router configurations that restrict connections between untrusted networks and any system components in the cardholder data environment.
1.3 Prohibit direct public access between the Internet and any system component in the CDE.
1.4 Install personal firewall software or equivalent functionality on any portable computing devices (including company and/or employee-owned) that connect to the Internet when outside the network (for example, laptops used by employees), and which are also used to access the CDE. Firewall (or equivalent) configurations include:
• Specific configuration settings are defined.
• Personal firewall (or equivalent functionality) is actively running.
• Personal firewall (or equivalent functionality) is not alterable by users of the portable computing devices.
1.5 Ensure that security policies and operational procedures for managing firewalls are documented, in use, and known to all affected parties.