STIGQter: STIG Summary: Juniper SRX SG NDM Security Technical Implementation Guide Version: 2 Release: 1 Benchmark Date: 23 Apr 2021:

For local log files, the Juniper SRX Services Gateway must allocate log storage capacity in accordance with organization-defined log record storage requirements so that the log files do not grow to a size that causes operational issues.

DISA Rule

SV-223198r513286_rule

Vulnerability Number

V-223198

Group Title

SRG-APP-000357-NDM-000293

Rule Version

JUSX-DM-000056

Severity

CAT II

CCI(s)

CCI-001849 - The organization allocates audit record storage capacity in accordance with organization-defined audit record storage requirements.

Weight

Fix Recommendation

Enter the following commands in the [edit system syslog] hierarchy.

[edit system syslog]
set file <log filename> any any archive size <file size> file <number of archives>

Check Contents

To verify the file size for the local system log is set.

[edit]
show system syslog

View the archive size setting of the local log files.

If all local log files are not set to an organizational-defined size, this is a finding.

For local log files, the Juniper SRX Services Gateway must allocate log storage capacity in accordance with organization-defined log record storage requirements so that the log files do not grow to a size that causes operational issues.

DISA Rule

Vulnerability Number

Group Title

Rule Version

Severity

CCI(s)

Weight

Fix Recommendation

Check Contents

Vulnerability Number

Documentable

Rule Version

Severity Override Guidance

Check Content Reference

Target Key

Comments