The Sentry must only allow incoming communications from organization-defined authorized sources routed to organization-defined authorized destinations.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
|---|---|---|---|---|
| V-251034 | MOIS-AL-001000 | SV-251034r802324_rule | Medium |
| Description |
|---|
| Unrestricted traffic may contain malicious traffic which poses a threat to an enclave or to other connected networks. Additionally, unrestricted traffic may transit a network, which uses bandwidth and other resources. Access control policies and access control lists implemented on devices that control the flow of network traffic (e.g., application level firewalls and Web content filters), ensure the flow of traffic is only allowed from authorized sources to authorized destinations. Networks with different levels of trust (e.g., the internet or CDS) must be kept separate. |
| STIG | Date |
|---|---|
| Ivanti MobileIron Sentry 9.x ALG Security Technical Implementation Guide | 2021-09-16 |
Details
| Check Text ( C-54469r802322_chk ) |
|---|
| Verify only approved network routes are added to the Sentry. 1. Log in to Sentry System Manager. 2. Go to Settings >> Network >> Routes. 3. Verify only approved network routes are configured. If non-approved network routes are configured, this is a finding. |
| Fix Text (F-54423r802323_fix) |
|---|
| Configure only approved network routes on the Sentry. 1. Log in to Sentry System Manager. 2. Go to Settings >> Routes. 3. Select any unauthorized network routes in the list and click "Delete". 4. Click "Add" to add approved routes. |