This guideline defines how external access will be allowed to the various development and testing levels of application infrastructure. This is important because allowing external access to application infrastructure that is under development or not fully tested can lead to security vulnerability exposure of GoA infrastructure, data or applications.