STIGQter: STIG Summary: Router Security Requirements Guide Version: 4 Release: 2 Benchmark Date: 23 Apr 2021:

The perimeter router must be configured to suppress Router Advertisements on all external IPv6-enabled interfaces.

DISA Rule

SV-220146r604135_rule

Vulnerability Number

V-220146

Group Title

SRG-NET-000512

Rule Version

SRG-NET-000512-RTR-000014

Severity

CAT II

CCI(s)

• CCI-000366 - The organization implements the security configuration settings.

Weight

10

Fix Recommendation

Configure the router to suppress Router Advertisements on all external IPv6-enabled interfaces.

Check Contents

This requirement is not applicable for the DODIN Backbone.

Review the router configuration to verify Router Advertisements are suppressed on all external IPv6-enabled interfaces.

If the router is not configured to suppress Router Advertisements on all external IPv6-enabled interfaces, this is a finding.

Vulnerability Number

V-220146

Documentable

False

Rule Version

SRG-NET-000512-RTR-000014

Severity Override Guidance

This requirement is not applicable for the DODIN Backbone.

Review the router configuration to verify Router Advertisements are suppressed on all external IPv6-enabled interfaces.

If the router is not configured to suppress Router Advertisements on all external IPv6-enabled interfaces, this is a finding.

Check Content Reference

M

Target Key

2917

Comments