STIGQter: STIG Summary: Virtual Private Network (VPN) Security Requirements Guide Version: 2 Release: 3 Benchmark Date: 23 Apr 2021:

The VPN Gateway must produce log records containing information to establish the outcome of the events.

DISA Rule

SV-207200r608988_rule

Vulnerability Number

V-207200

Group Title

SRG-NET-000091

Rule Version

SRG-NET-000091-VPN-000350

Severity

CAT II

CCI(s)

• CCI-000134 - The information system generates audit records containing information that establishes the outcome of the event.

Weight

10

Fix Recommendation

Configure the VPN Gateway to generate log entries containing information to establish the outcome of the events, such as, at a minimum, the success or failure of the client connection attempts.

Check Contents

Examine the log configuration on the VPN Gateway or view several alert events on the organization's central audit server. Alternatively, examine the Central Log Server to see if it contains information about success or failure of client connection attempts or other events.

If the traffic log entries do not include the success or failure of connection attempts and other events, this is a finding.

Vulnerability Number

V-207200

Documentable

False

Rule Version

SRG-NET-000091-VPN-000350

Severity Override Guidance

Examine the log configuration on the VPN Gateway or view several alert events on the organization's central audit server. Alternatively, examine the Central Log Server to see if it contains information about success or failure of client connection attempts or other events.

If the traffic log entries do not include the success or failure of connection attempts and other events, this is a finding.

Check Content Reference

M

Target Key

2920

Comments