Changes are coming to https://stigviewer.com.
Take our survey to help us understand your usage and how we can better serve you in the future.
Take Survey
The firewall must immediately use updates made to policy enforcement mechanisms such as firewall rules, security policies, and security zones.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
|---|---|---|---|---|
| V-206675 | SRG-NET-000019-FW-000004 | SV-206675r604133_rule | Medium |
| Description |
|---|
| Information flow policies regarding dynamic information flow control include, for example, allowing or disallowing information flows based on changes to the Ports, Protocols, Services Management [PPSM] Category Assurance Levels [CAL] list, vulnerability assessments, or mission conditions. Changing conditions include changes in the threat environment and detection of potentially harmful or adverse events. |
| STIG | Date |
|---|---|
| Firewall Security Requirements Guide | 2024-05-28 |
Details
| Check Text ( C-6932r297804_chk ) |
|---|
| Verify the firewall immediately uses updates made to policy enforcement mechanisms such as firewall rules, security policies, and security zones. For example, there is no need to reinitialize or reboot or the action to commit the changes is prompted. If the firewall does not immediately use updates made to policy enforcement mechanisms such as firewall rules, security policies, and security zones, this is a finding. |
| Fix Text (F-6932r297805_fix) |
|---|
| Require system administrators to commit and test changes upon configuration of the firewall. |