UCF STIG Viewer Logo

Applications functioning in the capacity of a firewall must check incoming communications to ensure the communications are coming from an authorized source and are routed to an authorized destination.


Overview

Finding ID Version Rule ID IA Controls Severity
V-35659 SRG-APP-000249-AS-NA SV-46946r1_rule Medium
Description
In regards to boundary controls such as routers and firewalls, examples of restricting and prohibiting communications include restricting external web traffic only to organizational web servers within managed interfaces and prohibiting external traffic that appears to be spoofing an internal address as the source. The requirement is NA. App servers are not firewalls.
STIG Date
Application Server Security Requirements Guide 2013-01-08

Details

Check Text ( C-44001r1_chk )
This requirement is NA for the AS SRG.
Fix Text (F-40201r1_fix)
The requirement is NA. No fix is required.