8.1.14 All remote access via the Internet, public network, or un-trusted network must be secured using an approved remote access process.
8.1.15 All external connections into the ACE Network must be through an ACE approved firewall for access control and monitoring. No external connections are allowed to connect directly to any ACE Network, Information Asset or related systems.