4.5: Implement and Manage a Firewall on End-User Devices

Threats Addressed:


Control Statement

Implement and manage a host-based firewall or port-filtering tool on end-user devices, with a default-deny rule that drops all traffic except those services and ports that are explicitly allowed.

[csf.tools Note: For more information on the Critical Security Controls, visit the Center for Internet Security.]