STIGQter: STIG Summary: Oracle Linux 6 Security Technical Implementation Guide Version: 2 Release: 3 Benchmark Date: 23 Apr 2021:

The system must employ a local IPv6 firewall.

DISA Rule

SV-219548r603263_rule

Vulnerability Number

V-219548

Group Title

SRG-OS-000480

Rule Version

OL6-00-000103

Severity

CAT II

CCI(s)

• CCI-000366 - The organization implements the security configuration settings.

Weight

10

Fix Recommendation

The "ip6tables" service can be enabled with the following commands:

# chkconfig ip6tables on
# service ip6tables start

Check Contents

If the system is a cross-domain system, this is not applicable.

If IPv6 is disabled, this is not applicable.

Run the following command to determine the current status of the "ip6tables" service:

# service ip6tables status

If the service is not running, it should return the following:

ip6tables: Firewall is not running.

If the service is not running, this is a finding.

Vulnerability Number

V-219548

Documentable

False

Rule Version

OL6-00-000103

Severity Override Guidance

If the system is a cross-domain system, this is not applicable.

If IPv6 is disabled, this is not applicable.

Run the following command to determine the current status of the "ip6tables" service:

# service ip6tables status

If the service is not running, it should return the following:

ip6tables: Firewall is not running.

If the service is not running, this is a finding.

Check Content Reference

M

Target Key

2928

Comments