V-242002 | High | Windows Defender Firewall with Advanced Security must block unsolicited inbound connections when connected to a public network. | A firewall provides a line of defense against attack. To be effective, it must be enabled and properly configured. Unsolicited inbound connections may be malicious attempts to gain access to a... |
V-241997 | High | Windows Defender Firewall with Advanced Security must block unsolicited inbound connections when connected to a private network. | A firewall provides a line of defense against attack. To be effective, it must be enabled and properly configured. Unsolicited inbound connections may be malicious attempts to gain access to a... |
V-241992 | High | Windows Defender Firewall with Advanced Security must block unsolicited inbound connections when connected to a domain. | A firewall provides a line of defense against attack. To be effective, it must be enabled and properly configured. Unsolicited inbound connections may be malicious attempts to gain access to a... |
V-242009 | Medium | Inbound exceptions to the firewall on domain workstations must only allow authorized remote management hosts. | Allowing inbound access to domain workstations from other systems may allow lateral movement across systems if credentials are compromised. Limiting inbound connections only from authorized remote... |
V-242003 | Medium | Windows Defender Firewall with Advanced Security must allow outbound connections, unless a rule explicitly blocks the connection when connected to a public network. | A firewall provides a line of defense against attack. To be effective, it must be enabled and properly configured. Outbound connections are allowed on a public network, unless a rule explicitly... |
V-242005 | Medium | Windows Defender Firewall with Advanced Security local connection rules must not be merged with Group Policy settings when connected to a public network. | A firewall provides a line of defense against attack. To be effective, it must be enabled and properly configured. Local connection rules will not be merged with Group Policy settings on a public... |
V-242004 | Medium | Windows Defender Firewall with Advanced Security local firewall rules must not be merged with Group Policy settings when connected to a public network. | A firewall provides a line of defense against attack. To be effective, it must be enabled and properly configured. Local firewall rules will not be merged with Group Policy settings on a public... |
V-241998 | Medium | Windows Defender Firewall with Advanced Security must allow outbound connections, unless a rule explicitly blocks the connection when connected to a private network. | A firewall provides a line of defense against attack. To be effective, it must be enabled and properly configured. Outbound connections are allowed on a private network, unless a rule explicitly... |
V-241989 | Medium | Windows Defender Firewall with Advanced Security must be enabled when connected to a domain. | A firewall provides a line of defense against attack. To be effective, it must be enabled and properly configured. This setting enables the firewall when connected to the domain. |
V-241990 | Medium | Windows Defender Firewall with Advanced Security must be enabled when connected to a private network. | A firewall provides a line of defense against attack. To be effective, it must be enabled and properly configured. This setting enables the firewall when connected to a private network. |
V-241991 | Medium | Windows Defender Firewall with Advanced Security must be enabled when connected to a public network. | A firewall provides a line of defense against attack. To be effective, it must be enabled and properly configured. This setting enables the firewall when connected to a public network. |
V-241993 | Medium | Windows Defender Firewall with Advanced Security must allow outbound connections, unless a rule explicitly blocks the connection when connected to a domain. | A firewall provides a line of defense against attack. To be effective, it must be enabled and properly configured. Outbound connections are allowed in the domain, unless a rule explicitly blocks... |
V-242008 | Low | Windows Defender Firewall with Advanced Security must log successful connections when connected to a public network. | A firewall provides a line of defense against attack. To be effective, it must be enabled and properly configured. Logging of successful connections for a public network connection will be enabled... |
V-242001 | Low | Windows Defender Firewall with Advanced Security must log successful connections when connected to a private network. | A firewall provides a line of defense against attack. To be effective, it must be enabled and properly configured. Logging of successful connections for a private network connection will be... |
V-242000 | Low | Windows Defender Firewall with Advanced Security must log dropped packets when connected to a private network. | A firewall provides a line of defense against attack. To be effective, it must be enabled and properly configured. Logging of dropped packets for a private network connection will be enabled to... |
V-242007 | Low | Windows Defender Firewall with Advanced Security must log dropped packets when connected to a public network. | A firewall provides a line of defense against attack. To be effective, it must be enabled and properly configured. Logging of dropped packets for a public network connection will be enabled to... |
V-242006 | Low | Windows Defender Firewall with Advanced Security log size must be configured for public network connections. | A firewall provides a line of defense against attack. To be effective, it must be enabled and properly configured. The firewall log file size for a public network connection will be set to ensure... |
V-241999 | Low | Windows Defender Firewall with Advanced Security log size must be configured for private network connections. | A firewall provides a line of defense against attack. To be effective, it must be enabled and properly configured. The firewall log file size for a private connection will be set to ensure enough... |
V-241994 | Low | Windows Defender Firewall with Advanced Security log size must be configured for domain connections. | A firewall provides a line of defense against attack. To be effective, it must be enabled and properly configured. The firewall log file size for a domain connection will be set to ensure enough... |
V-241995 | Low | Windows Defender Firewall with Advanced Security must log dropped packets when connected to a domain. | A firewall provides a line of defense against attack. To be effective, it must be enabled and properly configured. Logging of dropped packets for a domain connection will be enabled to maintain an... |
V-241996 | Low | Windows Defender Firewall with Advanced Security must log successful connections when connected to a domain. | A firewall provides a line of defense against attack. To be effective, it must be enabled and properly configured. Logging of successful connections for a domain connection will be enabled to... |