UCF STIG Viewer Logo
Changes are coming to https://stigviewer.com. Take our survey to help us understand your usage and how we can better serve you in the future.
Take Survey

The firewall implementation must block network access by unauthorized devices and must log the information as a security violation.


Overview

Finding ID Version Rule ID IA Controls Severity
V-37324 SRG-NET-000277-FW-000154 SV-49085r1_rule Low
Description
Local access to the private network can easily be accomplished by merely connecting a workstation or laptop to any available wall plate or a wireless connection to a nearby access point. Remote access to the network can be accomplished via connection to a VPN gateway. Eliminating unauthorized access to the network is vital to maintaining a secured network.
STIG Date
Firewall Security Requirements Guide 2013-04-24

Details

Check Text ( C-45572r1_chk )
Review the firewall configuration. Verify a rule exists to block network access by unauthorized devices.
Verify the firewall application log is configured to record an entry of the event.

If the firewall implementation does not block network access by unauthorized devices this is a finding.

If the firewall application log does not log the information as a security violation, this is a finding.
Fix Text (F-42249r1_fix)
Configure the firewall implementation to block network access by unauthorized devices and log a record of the event in the application log.