Finding ID | Version | Rule ID | IA Controls | Severity |
---|---|---|---|---|
V-62097 | SRG-NET-000213-VVSM-00011 | SV-76587r1_rule | Medium |
Description |
---|
Terminating network connections associated with communications sessions includes, for example, de-allocating associated TCP/IP address/port pairs at the operating system level, and de-allocating networking assignments at the application level if multiple application sessions are using a single, operating system level network connection. Voice Video Session Managers do not conduct media session; they conduct the session termination signaling. Endpoints and border elements conduct the media sessions and de-allocate those resources. However, sessions that do not receive a response from the far end may require the session manager to request termination of communication sessions. |
STIG | Date |
---|---|
Voice Video Session Management Security Requirements Guide | 2016-06-28 |
Check Text ( C-62901r1_chk ) |
---|
Verify the Voice Video Session Manager terminates all network connections associated with a communications session at the end of the session, or the session terminates after 15 minutes of inactivity. If the Voice Video Session Manager does not terminate all network connections associated with a communications session at the end of the session, this is a finding. If the Voice Video Session Manager does not terminate the session after 15 minutes of inactivity, this is a finding. |
Fix Text (F-68017r1_fix) |
---|
Configure the Voice Video Session Manager to terminate all network connections associated with a communications session at the end of the session. Alternatively, configure the Voice Video Session Manager to terminate the session after 15 minutes of inactivity. |