The firewall implementation must monitor and enforce filtering of internal addresses posing a threat to external information systems.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
|---|---|---|---|---|
| SRG-NET-000204-FW-000128 | SRG-NET-000204-FW-000128 | SRG-NET-000204-FW-000128_rule | Medium |
| Description |
|---|
| Monitoring and filtering the outbound traffic adds a layer of protection to the enclave. Blocking harmful outbound traffic can also prevent the network from being used as the source of an attack. |
| STIG | Date |
|---|---|
| Firewall Security Requirements Guide | 2012-12-10 |
Details
| Check Text ( C-SRG-NET-000204-FW-000128_chk ) |
|---|
| Verify ACLs or policy filters exist that monitor and block outbound traffic with internal source addresses that are harmful or will pose a threat to external information systems. If ACLs or policy filters do not exist to monitor and enforce filtering of internal addresses posing a threat to external information systems, this is a finding. |
| Fix Text (F-SRG-NET-000204-FW-000128_fix) |
|---|
| Configure the firewall implementation with ACLs or policy filters to enforce filtering of internal addresses posing a threat to external information systems. |