Finding ID | Version | Rule ID | IA Controls | Severity |
---|---|---|---|---|
V-4397 | GEN005560 | SV-37918r1_rule | ECSC-1 | Medium |
Description |
---|
If a system has no default gateway defined, the system is at increased risk of man-in-the-middle, monitoring, and Denial of Service attacks. |
STIG | Date |
---|---|
Red Hat Enterprise Linux 5 Security Technical Implementation Guide | 2012-05-25 |
Check Text ( C-37145r1_chk ) |
---|
Check the system for an IPv4 default route. If the system is a VM host and acts as a router solely for the benefit of its client systems, then this rule is not applicable. Procedure: # netstat -r |grep default If a default route is not defined, this is a finding. |
Fix Text (F-32410r1_fix) |
---|
Set a default gateway for IPv4. |