Changes are coming to https://stigviewer.com.
Take our survey to help us understand your usage and how we can better serve you in the future.
Take Survey
The firewall implementation must monitor and enforce filtering of internal addresses posing a threat to external information systems.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
|---|---|---|---|---|
| SRG-NET-000204-FW-000128 | SRG-NET-000204-FW-000128 | SRG-NET-000204-FW-000128_rule | Medium |
| Description |
|---|
| Monitoring and filtering the outbound traffic adds a layer of protection to the enclave. Blocking harmful outbound traffic can also prevent the network from being used as the source of an attack. |
| STIG | Date |
|---|---|
| Firewall Security Requirements Guide | 2012-12-10 |
Details
| Check Text ( C-SRG-NET-000204-FW-000128_chk ) |
|---|
| Verify ACLs or policy filters exist that monitor and block outbound traffic with internal source addresses that are harmful or will pose a threat to external information systems. If ACLs or policy filters do not exist to monitor and enforce filtering of internal addresses posing a threat to external information systems, this is a finding. |
| Fix Text (F-SRG-NET-000204-FW-000128_fix) |
|---|
| Configure the firewall implementation with ACLs or policy filters to enforce filtering of internal addresses posing a threat to external information systems. |