The network device must manage excess capacity, bandwidth, or other redundancy to limit the effects of information flooding types of denial of service attacks.

Overview

Finding ID	Version	Rule ID	IA Controls	Severity
SRG-NET-000193-NDM-NA	SRG-NET-000193-NDM-NA	SRG-NET-000193-NDM-NA_rule		Medium

Description
Managing excess capacity ensures that sufficient capacity is available to counter flooding attacks. Managing excess capacity may include establishing selected usage priorities, quotas, or partitioning. The device must be configured to contain and limit a denial of service attack's effect on the device's resource utilization. Managing excess capacity, bandwidth, or other redundancy is not a network device management function.

Description

Managing excess capacity ensures that sufficient capacity is available to counter flooding attacks. Managing excess capacity may include establishing selected usage priorities, quotas, or partitioning. The device must be configured to contain and limit a denial of service attack's effect on the device's resource utilization. Managing excess capacity, bandwidth, or other redundancy is not a network device management function.

STIG	Date
Network Device Management Security Requirements Guide	2013-07-30

Details

Check Text ( C-SRG-NET-000193-NDM-NA_chk )
This requirement is NA for network device management.

Fix Text (F-SRG-NET-000193-NDM-NA_fix)
This requirement is NA for network device management.