The firewall implementation must employ automated mechanisms to prevent program execution in accordance with organizationally defined specifications.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
|---|---|---|---|---|
| SRG-NET-000133-FW-000082 | SRG-NET-000133-FW-000082 | SRG-NET-000133-FW-000082_rule | Medium |
| Description |
|---|
| This control requires automated mechanisms (e.g., such as firewall applications, be used to provide protection against unauthorized program execution. Firewall technologies, such as application gateways, must be leveraged to implement least functionality by controlling the use of program execution on network servers and clients. Firewalls block or allow these programs at the internal or external network boundaries. The organization my define rules that: deny unauthorized or malicious programs from executing; permit only authorized programs; or govern the use of the program. |
| STIG | Date |
|---|---|
| Firewall Security Requirements Guide | 2012-12-10 |
Details
| Check Text ( C-SRG-NET-000133-FW-000082_chk ) |
|---|
| Verify the firewall implementation includes at least one firewall that is configured to prevent program execution in accordance with organizationally defined specifications. If the firewall implementation does not prevent program execution in accordance with organizationally defined specifications, this is a finding. |
| Fix Text (F-SRG-NET-000133-FW-000082_fix) |
|---|
| Configure the firewall implementation to prevent program execution in accordance with organizationally defined specifications |