STIGQter: STIG Summary: Cisco IOS XR Router NDM Security Technical Implementation Guide Version: 2 Release: 2 Benchmark Date: 23 Apr 2021: STIGQter: STIG Summary: Cisco IOS XR Router NDM Security Technical Implementation Guide Version: 2 Release: 2 Benchmark Date: 23 Apr 2021:SV-216533r531088_rule
V-216533
SRG-APP-000357-NDM-000293
CISC-ND-000980
CAT II
10
Configure the logging buffer size as well as the active log file size and the amount of storage to be reserved for archive log files as shown in the example below.
RP/0/0/CPU0:R3(config)#logging buffered 8888888
RP/0/0/CPU0:R3(config)#logging archive
RP/0/0/CPU0:R3(config-logging-arch)#severity notifications
RP/0/0/CPU0:R3(config-logging-arch)#device harddisk
RP/0/0/CPU0:R3(config-logging-arch)#archive-size 100
RP/0/0/CPU0:R3(config-logging-arch)#file-size 10
RP/0/0/CPU0:R3(config-logging-arch)#end
Verify that the Cisco router is configured with a logging buffer size as well as on the hard drive. The configuration should look like the example below:
logging archive
device harddisk
severity notifications
file-size 10
archive-size 100
…
…
…
logging buffered 8888888
If a logging buffer size and the archive size is not configured, this is a finding.
If the Cisco router is not configured to allocate audit record storage capacity in accordance with organization-defined audit record storage requirements, this is a finding.
V-216533
False
CISC-ND-000980
Verify that the Cisco router is configured with a logging buffer size as well as on the hard drive. The configuration should look like the example below:
logging archive
device harddisk
severity notifications
file-size 10
archive-size 100
…
…
…
logging buffered 8888888
If a logging buffer size and the archive size is not configured, this is a finding.
If the Cisco router is not configured to allocate audit record storage capacity in accordance with organization-defined audit record storage requirements, this is a finding.
M
4023