STIGQter STIGQter: STIG Summary: Router Security Requirements Guide Version: 4 Release: 2 Benchmark Date: 23 Apr 2021:

The multicast Rendezvous Point (RP) router must be configured to filter Protocol Independent Multicast (PIM) Register messages received from the Designated Router (DR) for any undesirable multicast groups and sources.

DISA Rule

SV-207118r604135_rule

Vulnerability Number

V-207118

Group Title

SRG-NET-000019

Rule Version

SRG-NET-000019-RTR-000013

Severity

CAT III

CCI(s)

Weight

10

Fix Recommendation

Configure the RP router to filter PIM register messages received from a multicast DR for any undesirable multicast groups or sources.

Check Contents

Verify that the RP router is configured to filter PIM register messages.

If the RP router peering with PIM-SM routers is not configured with a PIM import policy to block registration messages for any undesirable multicast groups and sources, this is a finding.

Vulnerability Number

V-207118

Documentable

False

Rule Version

SRG-NET-000019-RTR-000013

Severity Override Guidance

Verify that the RP router is configured to filter PIM register messages.

If the RP router peering with PIM-SM routers is not configured with a PIM import policy to block registration messages for any undesirable multicast groups and sources, this is a finding.

Check Content Reference

M

Target Key

2917

Comments