UCF STIG Viewer Logo
Changes are coming to https://stigviewer.com. Take our survey to help us understand your usage and how we can better serve you in the future.
Take Survey

The VPN Gateway must off-load audit records onto a different system or media than the system being audited.


Overview

Finding ID Version Rule ID IA Controls Severity
V-207234 SRG-NET-000334-VPN-001260 SV-207234r608988_rule Medium
Description
Information stored in one location is vulnerable to accidental or incidental deletion or alteration. Off-loading is a common process in information systems with limited audit storage capacity. This requirement only applies to components where this is specific to the function of the device (e.g., IDPS sensor logs, firewall logs). This does not apply to audit logs generated on behalf of the device itself (management).
STIG Date
Virtual Private Network (VPN) Security Requirements Guide 2021-03-25

Details

Check Text ( C-7494r378323_chk )
Verify the VPN Gateway off-loads log records onto a different system or media than the system being audited.

If the VPN Gateway does not off-load audit records onto a different system or media than the system being audited, this is a finding.
Fix Text (F-7494r378324_fix)
Configure the VPN Gateway to off-load audit records onto a different system or media than the system being audited.