The firewall implementation must limit the use of resources by priority.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
|---|---|---|---|---|
| SRG-NET-000194-FW-000120 | SRG-NET-000194-FW-000120 | SRG-NET-000194-FW-000120_rule | Medium |
| Description |
|---|
| Priority protection helps prevent a lower priority process from delaying or interfering with the information system servicing any higher-priority process. If priority protection is not implemented, network congestion may result in poor network service because priority traffic may be delayed or dropped, and this in turn could result in a denial of service condition. |
| STIG | Date |
|---|---|
| Firewall Security Requirements Guide | 2012-12-10 |
Details
| Check Text ( C-SRG-NET-000194-FW-000120_chk ) |
|---|
| Review the firewall documentation and system configuration to determine if resource prioritization is implemented as part of the firewall application. If the system is not configured to prioritize resources, this is a finding. |
| Fix Text (F-SRG-NET-000194-FW-000120_fix) |
|---|
| Configure the firewall implementation to limit the use of resources by priority. |