A firm has the following firewall policy: Employee access to Internet servers should be unrestricted, and external clients should only be able to access the firm's public web server, http://www.pukanui.com. The firm also has a finance server that should only be accessible to people in the finance department. The server and the finance department are all on the internal subnet 10.5.4.3. The firm has a single large site. How would you implement this policy? Create both a firewall architecture and ACLs for the border firewall for both internal and external connection-opening attempts.