UCF STIG Viewer Logo
Changes are coming to https://stigviewer.com. Take our survey to help us understand your usage and how we can better serve you in the future.
Take Survey

The firewall implementation must identify and respond to potential security-relevant error conditions.


Overview

Finding ID Version Rule ID IA Controls Severity
V-37321 SRG-NET-000272-FW-000151 SV-49082r1_rule Medium
Description
Error messages generated by various components and services of the network devices can indicate a possible security violation or breach. The firewall implementation must detect and respond to error messages that may be a symptom of a compromise and provide notification. These error messages may be part of the network traffic on segments being monitored. Responses to these conditions include alerts or traffic dropping/blocking. If security-relevant error conditions are not identified by the firewall, intrusion attacks may remain undetected, allowing more serious damage to the network.
STIG Date
Firewall Security Requirements Guide 2013-04-24

Details

Check Text ( C-45569r1_chk )
Verify ACLs or policy filters exist on the firewall to monitor the data for excessive error messages from network components.
Verify ACLs or policy filters exist to identify and respond to potential security-relevant error conditions.

If the system is not configured to identify and respond to potential security-relevant error conditions, this is a finding.
Fix Text (F-42246r1_fix)
Configure the system to identify and respond to potential security-relevant error conditions.