UCF STIG Viewer Logo
Changes are coming to https://stigviewer.com. Take our survey to help us understand your usage and how we can better serve you in the future.
Take Survey

Any software application designed to function as a firewall must be capable of employing a default deny all configuration.


Overview

Finding ID Version Rule ID IA Controls Severity
V-35667 SRG-APP-000256-AS-NA SV-46954r1_rule Medium
Description
A firewall default deny all is a firewall configuration setting that will force the administrator to explicitly allow network or application traffic rather than allowing all traffic by default. The purpose is to prevent unmanaged access into the internal network or in the case of an application firewall, to application content, features, or functionality. The requirement is NA. App servers are not designed to be firewalls.
STIG Date
Application Server Security Requirements Guide 2013-01-08

Details

Check Text ( C-44008r1_chk )
This requirement is NA for the AS SRG.
Fix Text (F-40208r1_fix)
The requirement is NA. No fix is required.