The IDPS must isolate organizationally defined key information security tools, mechanisms, and support components from other internal information system components via physically separate subnets.

Overview

Finding ID	Version	Rule ID	IA Controls	Severity
SRG-NET-000197-IDPS-NA	SRG-NET-000197-IDPS-NA	SRG-NET-000197-IDPS-NA_rule		Medium

Description
To secure the enclave, the site must implement defense-in-depth security. This requires the deployment of various network security elements at strategic locations. The enclave must also be segregated into separate subnets with unique security policies. Subnetting provides a number of essential network services (e.g., public content, remote access, perimeter protection). If isolation techniques such as subnetting are not used, unauthorized access to privileged information could result.

Description

To secure the enclave, the site must implement defense-in-depth security. This requires the deployment of various network security elements at strategic locations. The enclave must also be segregated into separate subnets with unique security policies. Subnetting provides a number of essential network services (e.g., public content, remote access, perimeter protection). If isolation techniques such as subnetting are not used, unauthorized access to privileged information could result.

STIG	Date
IDPS Security Requirements Guide (SRG)	2012-03-08

Details

Check Text ( C-43362_chk )
This requirement does not apply to IDPS.

Fix Text (F-43362_fix)
Not applicable for IDPS. No fix required.