The firewall implementation must block network access by unauthorized devices and must log the information as a security violation.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
|---|---|---|---|---|
| V-37324 | SRG-NET-000277-FW-000154 | SV-49085r1_rule | Low |
| Description |
|---|
| Local access to the private network can easily be accomplished by merely connecting a workstation or laptop to any available wall plate or a wireless connection to a nearby access point. Remote access to the network can be accomplished via connection to a VPN gateway. Eliminating unauthorized access to the network is vital to maintaining a secured network. |
| STIG | Date |
|---|---|
| Firewall Security Requirements Guide | 2013-04-24 |
Details
| Check Text ( C-45572r1_chk ) |
|---|
| Review the firewall configuration. Verify a rule exists to block network access by unauthorized devices. Verify the firewall application log is configured to record an entry of the event. If the firewall implementation does not block network access by unauthorized devices this is a finding. If the firewall application log does not log the information as a security violation, this is a finding. |
| Fix Text (F-42249r1_fix) |
|---|
| Configure the firewall implementation to block network access by unauthorized devices and log a record of the event in the application log. |