Changes are coming to https://stigviewer.com.
Take our survey to help us understand your usage and how we can better serve you in the future.
Take Survey
Any software application designed to function as a firewall must be capable of employing a default deny all configuration.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
|---|---|---|---|---|
| V-35667 | SRG-APP-000256-AS-NA | SV-46954r1_rule | Medium |
| Description |
|---|
| A firewall default deny all is a firewall configuration setting that will force the administrator to explicitly allow network or application traffic rather than allowing all traffic by default. The purpose is to prevent unmanaged access into the internal network or in the case of an application firewall, to application content, features, or functionality. The requirement is NA. App servers are not designed to be firewalls. |
| STIG | Date |
|---|---|
| Application Server Security Requirements Guide | 2013-01-08 |
Details
| Check Text ( C-44008r1_chk ) |
|---|
| This requirement is NA for the AS SRG. |
| Fix Text (F-40208r1_fix) |
|---|
| The requirement is NA. No fix is required. |