Finding ID | Version | Rule ID | IA Controls | Severity |
---|---|---|---|---|
V-207234 | SRG-NET-000334-VPN-001260 | SV-207234r856706_rule | Medium |
Description |
---|
Information stored in one location is vulnerable to accidental or incidental deletion or alteration. Off-loading is a common process in information systems with limited audit storage capacity. This requirement only applies to components where this is specific to the function of the device (e.g., IDPS sensor logs, firewall logs). This does not apply to audit logs generated on behalf of the device itself (management). |
STIG | Date |
---|---|
Virtual Private Network (VPN) Security Requirements Guide | 2024-07-02 |
Check Text ( C-7494r378323_chk ) |
---|
Verify the VPN Gateway off-loads log records onto a different system or media than the system being audited. If the VPN Gateway does not off-load audit records onto a different system or media than the system being audited, this is a finding. |
Fix Text (F-7494r378324_fix) |
---|
Configure the VPN Gateway to off-load audit records onto a different system or media than the system being audited. |