The network device must deny network traffic by default and allow network traffic by exception at all interfaces at the network perimeter.

Overview

Finding ID	Version	Rule ID	IA Controls	Severity
SRG-NET-000202-NDM-NA	SRG-NET-000202-NDM-NA	SRG-NET-000202-NDM-NA_rule		Low

Description
All inbound and outbound traffic must be denied by default. The network device and perimeter routers must only allow traffic that is explicitly permitted. Similarly, allowing unknown or undesirable outbound traffic will establish a session state which may subsequently allow the network device to permit the return of this undesirable traffic inbound. This requirement is applicable to specific devices and does not involve the management of a network device.

Description

All inbound and outbound traffic must be denied by default. The network device and perimeter routers must only allow traffic that is explicitly permitted. Similarly, allowing unknown or undesirable outbound traffic will establish a session state which may subsequently allow the network device to permit the return of this undesirable traffic inbound. This requirement is applicable to specific devices and does not involve the management of a network device.

STIG	Date
Network Device Management Security Requirements Guide	2013-07-30

Details

Check Text ( C-SRG-NET-000202-NDM-NA_chk )
This requirement is NA for network device management.

Fix Text (F-SRG-NET-000202-NDM-NA_fix)
This requirement is NA for network device management.