STIGQter: STIG Summary: Symantec ProxySG ALG Security Technical Implementation Guide Version: 1 Release: 3 Benchmark Date: 24 Apr 2020:

Symantec ProxySG must implement load balancing to limit the effects of known and unknown types of denial-of-service (DoS) attacks.

DISA Rule

SV-104273r1_rule

Vulnerability Number

V-94319

Group Title

SRG-NET-000362-ALG-000120

Rule Version

SYMP-AG-000530

Severity

CAT II

CCI(s)

• CCI-002385 - The information system protects against or limits the effects of organization-defined types of denial of service attacks by employing organization-defined security safeguards.

Weight

10

Fix Recommendation

Configure redundancy on the ProxySG.

1. Log on to the Web Management Console.
2. Browse to Configuration >> Network >> Advanced.
3. Select the "Failover" tab and configure using the SSP requirements.

Check Contents

Verify that redundancy has been configured on the ProxySG.

1. Log on to the Web Management Console.
2. Browse to Configuration >> Network >> Advanced.
3. Select the "Failover" tab and Verify that entries are present and that they are "enabled".

If Symantec ProxySG does not implement load balancing to limit the effects of known and unknown types of DoS attacks, this is a finding.

Vulnerability Number

V-94319

Documentable

False

Rule Version

SYMP-AG-000530

Severity Override Guidance

Verify that redundancy has been configured on the ProxySG.

1. Log on to the Web Management Console.
2. Browse to Configuration >> Network >> Advanced.
3. Select the "Failover" tab and Verify that entries are present and that they are "enabled".

If Symantec ProxySG does not implement load balancing to limit the effects of known and unknown types of DoS attacks, this is a finding.

Check Content Reference

M

Target Key

3515

Comments