The network device must protect the integrity and availability of publicly available information and applications.

Overview

Finding ID	Version	Rule ID	IA Controls	Severity
SRG-NET-000224-NDM-NA	SRG-NET-000224-NDM-NA	SRG-NET-000224-NDM-NA_rule		Medium

Description
Public-facing servers enable access to information by clients outside of the enclave. These servers are subject to greater exposure to attacks. It is imperative that the integrity of the data is maintained to ensure the enclave does not provide false or erroneous information. The network device must provide the necessary protection to ensure availability and integrity of the data and to reduce or eliminate denial of service attacks directed against the servers on the public-facing segment. A network device must be installed to monitor the publicly available segment (e.g., public DMZ). This requirement is applicable to specific devices and does not involve the management of a network device.

Description

Public-facing servers enable access to information by clients outside of the enclave. These servers are subject to greater exposure to attacks. It is imperative that the integrity of the data is maintained to ensure the enclave does not provide false or erroneous information. The network device must provide the necessary protection to ensure availability and integrity of the data and to reduce or eliminate denial of service attacks directed against the servers on the public-facing segment. A network device must be installed to monitor the publicly available segment (e.g., public DMZ). This requirement is applicable to specific devices and does not involve the management of a network device.

STIG	Date
Network Device Management Security Requirements Guide	2013-07-30

Details

Check Text ( C-SRG-NET-000224-NDM-NA_chk )
This requirement is NA for network device management.

Fix Text (F-SRG-NET-000224-NDM-NA_fix)
This requirement is NA for network device management.