The network device must connect to external networks only through managed interfaces consisting of boundary protection devices arranged in accordance with organizational security architecture.

Overview

Finding ID	Version	Rule ID	IA Controls	Severity
SRG-NET-000206-NDM-NA	SRG-NET-000206-NDM-NA	SRG-NET-000206-NDM-NA_rule		Low

Description
The network device will build a state to allow return traffic for all initiated traffic that was allowed outbound. Monitoring and filtering the outbound traffic adds a layer of protection to the enclave, in addition to being a good Internet citizen by preventing your network from being used as an attack base. All network devices must be configured to ensure all traffic is forwarded through the perimeter security infrastructure when sending traffic to external destinations. This requirement is applicable to specific devices and does not involve the management of a network device.

Description

The network device will build a state to allow return traffic for all initiated traffic that was allowed outbound. Monitoring and filtering the outbound traffic adds a layer of protection to the enclave, in addition to being a good Internet citizen by preventing your network from being used as an attack base. All network devices must be configured to ensure all traffic is forwarded through the perimeter security infrastructure when sending traffic to external destinations. This requirement is applicable to specific devices and does not involve the management of a network device.

STIG	Date
Network Device Management Security Requirements Guide	2013-07-30

Details

Check Text ( C-SRG-NET-000206-NDM-NA_chk )
This requirement is NA for network device management.

Fix Text (F-SRG-NET-000206-NDM-NA_fix)
This requirement is NA for network device management.