STIGQter STIGQter: STIG Summary: Layer 2 Switch Security Technical Implementation Guide Version: 8 Release: 27 Benchmark Date: 25 Jan 2019: Network devices must only allow SNMP access from addresses belonging to the management network.

DISA Rule

SV-3021r3_rule

Vulnerability Number

V-3021

Group Title

SNMP access is not restricted by IP address.

Rule Version

NET0890

Severity

CAT II

CCI(s)

Weight

10

Fix Recommendation

Configure the network devices to only allow SNMP access from only addresses belonging to the management network.

Check Contents

Review the device configuration and verify it is configured to only allow SNMP access from addresses belonging to the management network.

If the device is not configured to filter SNMP from the management network only, this is a finding.

Vulnerability Number

V-3021

Documentable

False

Rule Version

NET0890

Severity Override Guidance

Review the device configuration and verify it is configured to only allow SNMP access from addresses belonging to the management network.

If the device is not configured to filter SNMP from the management network only, this is a finding.

Check Content Reference

M

Responsibility

Information Assurance Officer

Target Key

512

Comments