UCF STIG Viewer Logo
Changes are coming to https://stigviewer.com. Take our survey to help us understand your usage and how we can better serve you in the future.
Take Survey

The firewall implementation must protect against TCP SYN floods.


Overview

Finding ID Version Rule ID IA Controls Severity
SRG-NET-000362-FW-000230 SRG-NET-000362-FW-000230 SRG-NET-000362-FW-000230_rule Medium
Description
Denial of Service is a condition when a resource is not available for legitimate users. A SYN-flood attack is a denial-of-service attack where the attacker sends a huge amount of please-start-a-connection packets and then nothing else. This causes the device being attacked to be overloaded with the open sessions and eventually crash.
STIG Date
Firewall Security Requirements Guide 2014-07-07

Details

Check Text ( C-SRG-NET-000362-FW-000230_chk )
Review the configuration of the firewall implementation. If measures have been configured to negate or mitigate the effects of a SYN flood attack, this is not a finding. If the site has implemented SYN flood protection for the enclave using the premise router, then there is no additional requirement to implement this on the firewall.
Fix Text (F-SRG-NET-000362-FW-000230_fix)
Configure measures to negate or mitigate the effects of a SYN flood attack.