STIGQter: STIG Summary: Video Services Policy STIG Version: 1 Release: 11 Benchmark Date: 24 Apr 2020:

A VTC endpoint must not bridge a wired LAN and a wireless LAN.

DISA Rule

SV-18889r2_rule

Vulnerability Number

V-17715

Group Title

RTS-VTC 4320.00 [IP]

Rule Version

RTS-VTC 4320.00

Severity

CAT I

CCI(s)

CCI-000366 - The organization implements the security configuration settings.

Weight

Fix Recommendation

Configure the VTC system to prohibit simultaneous connection to a wireless LAN and a wired LAN connection.

NOTE: Best practice is to design the VTC endpoint unit with equipment that does not support wireless LAN connectivity or to insert an approved isolation switch between the networks connected to the VTC endpoint. For VTC endpoints relying on wireless connectivity for the conference room control system, cameras, or microphones, additional design considerations may be necessary to prevent bridging networks.

Check Contents

Verify VTC endpoints do not simultaneously connect to a wired LAN and a wireless LAN. If the VTC endpoint equipment can pass traffic between the two LANs, this is a finding.

Vulnerability Number

V-17715

Documentable

False

Rule Version

RTS-VTC 4320.00

Severity Override Guidance

Verify VTC endpoints do not simultaneously connect to a wired LAN and a wireless LAN. If the VTC endpoint equipment can pass traffic between the two LANs, this is a finding.

A VTC endpoint must not bridge a wired LAN and a wireless LAN.

DISA Rule

Vulnerability Number

Group Title

Rule Version

Severity

CCI(s)

Weight

Fix Recommendation

Check Contents

Vulnerability Number

Documentable

Rule Version

Severity Override Guidance

Check Content Reference

Responsibility

Target Key

Comments