STIGQter STIGQter: STIG Summary: Virtual Private Network (VPN) Security Requirements Guide Version: 2 Release: 3 Benchmark Date: 23 Apr 2021:

The IPsec VPN Gateway must use anti-replay mechanisms for security associations.

DISA Rule

SV-207212r608988_rule

Vulnerability Number

V-207212

Group Title

SRG-NET-000147

Rule Version

SRG-NET-000147-VPN-000530

Severity

CAT II

CCI(s)

Weight

10

Fix Recommendation

Configure the IPsec VPN Gateway to use anti-replay mechanisms for security associations.

Check Contents

Verify the IPsec VPN Gateway uses anti-replay mechanisms for security associations.

If the IPsec VPN Gateway does not use anti-replay mechanisms for security associations, this is a finding.

Vulnerability Number

V-207212

Documentable

False

Rule Version

SRG-NET-000147-VPN-000530

Severity Override Guidance

Verify the IPsec VPN Gateway uses anti-replay mechanisms for security associations.

If the IPsec VPN Gateway does not use anti-replay mechanisms for security associations, this is a finding.

Check Content Reference

M

Target Key

2920

Comments