STIGQter: STIG Summary: Juniper Router RTR Security Technical Implementation Guide Version: 2 Release: 2 Benchmark Date: 12 Feb 2021:

The Juniper router must be configured to produce audit records containing information to establish the source of the events.

DISA Rule

SV-217027r639663_rule

Vulnerability Number

V-217027

Group Title

SRG-NET-000077-RTR-000001

Rule Version

JUNI-RT-000220

Severity

CAT II

CCI(s)

• CCI-000133 - The information system generates audit records containing information that establishes the source of the event.

Weight

10

Fix Recommendation

Configure the router to log events containing information to establish where the events occurred as shown in the example below.

[edit system syslog]
set file LOG_FILE any any

Check Contents

Review the router configuration to verify that events are logged containing information to establish where the events occurred as shown in the example below.

system {
host-name XYZ;
…
…
…
}
syslog {
file LOG_FILE {
any any;
}
}
}

If the router is not configured to produce audit records containing information to establish the source of the events, this is a finding.

Vulnerability Number

V-217027

Documentable

False

Rule Version

JUNI-RT-000220

Severity Override Guidance

Review the router configuration to verify that events are logged containing information to establish where the events occurred as shown in the example below.

system {
host-name XYZ;
…
…
…
}
syslog {
file LOG_FILE {
any any;
}
}
}

If the router is not configured to produce audit records containing information to establish the source of the events, this is a finding.

Check Content Reference

M

Target Key

4032

Comments