CMMC 1.0 Practice SC.3.183 Requirement:

Deny network communications traffic by default and allow network communications traffic by exception (i.e., deny all, permit by exception).

CMMC 1.0 SC.3.183 Requirement Explanation:

By only allowing authorized traffic in and out of your network you can mitigate a wide range of security threats. This control may be tricky to implement, be sure to carefully plan its implementation.

Example CMMC 1.0 SC.3.183 Implementation:

Only allow authorized traffic in and out of your network. This can be accomplished using firewall rules. This includes blocking ports, IP addresses, and the types of websites users can access. Before blocking traffic, carefully document which traffic needs to come in and out of your network. Document why you have determined to allow some traffic.

CMMC 1.0 SC.3.183 Scenario(s):

- Scenario 1:

Your company wants to limit traffic coming in and out of its network to only traffic required to support your business operations. You analyze the traffic coming in and out of your network to determine the traffic essential for your business operations. You create rules in your firewall to allow this traffic and deny all other traffic.

Discover Our NIST SP 800-171 & CMMC 2.0 Solutions:


Compliance Accelerator

Power through compliance. Meet and maintain your NIST SP 800-171 & CMMC 2.0 compliance requirements.

Quantum Assessor

Transform your business. Create new revenue streams and provide scalability for your NIST SP 800-171 and CMMC 2.0 services.

Supply Chain Verifier

Trust is everything. Verify, monitor, and support subcontactor compliance.