The router must enforce security policies regarding information on interconnected systems.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
|---|---|---|---|---|
| SRG-NET-000023-RTR-000016 | SRG-NET-000023-RTR-000016 | SRG-NET-000023-RTR-000016_rule | Medium |
| Description |
|---|
| Transferring information between interconnected information systems of differing security policies introduces the risk of the transfers violating one or more policies. It is imperative that policy guidance from information owners be implemented at the policy enforcement point between the interconnected systems. |
| STIG | Date |
|---|---|
| Router Security Requirements Guide | 2013-07-30 |
Details
| Check Text ( C-SRG-NET-000023-RTR-000016_chk ) |
|---|
| Inspect the ACLs or policy filters that are configured to monitor, block, or redirect network traffic based on detected events between interconnected networks. Verify the router is configured to enforce the security policies between interconnected networks. If the router is not configured to enforce security policies regarding information on interconnected networks, this is a finding. |
| Fix Text (F-SRG-NET-000023-RTR-000016_fix) |
|---|
| Configure the router so the security policy on all devices is not bypassed. Configure the router to enforce security policies regarding information on interconnected networks. |