Any software application designed to function as a firewall must be capable of employing a default deny all configuration.

Overview

Finding ID	Version	Rule ID	IA Controls	Severity
V-35667	SRG-APP-000256-AS-NA	SV-46954r1_rule		Medium

Description
A firewall default deny all is a firewall configuration setting that will force the administrator to explicitly allow network or application traffic rather than allowing all traffic by default. The purpose is to prevent unmanaged access into the internal network or in the case of an application firewall, to application content, features, or functionality. The requirement is NA. App servers are not designed to be firewalls.

Description

A firewall default deny all is a firewall configuration setting that will force the administrator to explicitly allow network or application traffic rather than allowing all traffic by default. The purpose is to prevent unmanaged access into the internal network or in the case of an application firewall, to application content, features, or functionality. The requirement is NA. App servers are not designed to be firewalls.

STIG	Date
Application Server Security Requirements Guide	2013-01-08

Details

Check Text ( C-44008r1_chk )
This requirement is NA for the AS SRG.

Fix Text (F-40208r1_fix)
The requirement is NA. No fix is required.