@Dashrender said in how does this work? Modems/IPs/PCI Scans:
@scotth said in how does this work? Modems/IPs/PCI Scans:
I think that there's one more way. One firewall per network, both through the cable modem/router. Each is responsible for their own security. Any backoffice access is governed by the payment processor and security for the payment/processing side is provided by the payment processor.
This assumes you can get two ip from the isp.
You could also put one firewall behind the other. This happens a lot. The idea is to get the transaction(s) secure and to make absolutely sure that the PCI compliance is on the shoulders of the payment processor as much as possible. Audits are their responsibility. Remediation is their responsibility. Secure transactions are their responsibility.
EDIT: This does not exclude you (meaning anyone) from properly securing your own environment. Put the onus where it belongs.