All global address ranges used on unclassified and classified networks must be properly registered with the DoD Network Information Center (NIC).

Overview

Finding ID	Version	Rule ID	IA Controls	Severity
V-251359	NET0180	SV-251359r877974_rule		Medium

Description

If network address space is not properly configured, managed, and controlled, the network could be accessed by unauthorized personnel resulting in security compromise of site information and resources. Allowing subscribers onto the network whose IP addresses are not registered with the .Mil NIC may allow unauthorized users access into the network. These unauthorized users could then monitor the network, steal passwords, and access classified information.

STIG	Date
Network Infrastructure Policy Security Technical Implementation Guide	2024-08-02

Details

Check Text (C-54794r877973_chk)

Validate global IP addresses in use on unclassified or classified networks registered through the DoD Network Information Center. For NIPRNet, go to the website https://www.nic.mil. For SIPRNet, go to the web portal at http://www.ssc.smil.mil.

If the site is using an address space that has not been registered and allocated to the site, this is a finding.

Fix Text (F-54747r806031_fix)

Submit any unregistered and/or unauthorized global IP addresses to the DoD Network Information Center (NIC) for registration.