UCF STIG Viewer Logo

The router must have IP source routing disabled.


Overview

Finding ID Version Rule ID IA Controls Severity
V-3081 NET0770 SV-15316r2_rule Medium
Description
Source routing is a feature of IP, whereby individual packets can specify routes. This feature is used in several different network attacks by bypassing perimeter and internal defense mechanisms.
STIG Date
Infrastructure Router - Cisco Security Technical Implementation Guide 2017-09-28

Details

Check Text ( C-12782r2_chk )
Review the configuration to determine if source routing is enabled. The IOS command no ip source-route must be included in the configuration.
Fix Text (F-3106r2_fix)
Configure the router to disable IP source routing.