STIGQter: STIG Summary: Layer 2 Switch Security Technical Implementation Guide Version: 8 Release: 27 Benchmark Date: 25 Jan 2019: Network devices must only allow SNMP access from addresses belonging to the management network.

DISA Rule

SV-3021r3_rule

Vulnerability Number

V-3021

Group Title

SNMP access is not restricted by IP address.

Rule Version

NET0890

Severity

CAT II

CCI(s)

CCI-000366 - The organization implements the security configuration settings.

Weight

Fix Recommendation

Configure the network devices to only allow SNMP access from only addresses belonging to the management network.

Check Contents

Review the device configuration and verify it is configured to only allow SNMP access from addresses belonging to the management network.

If the device is not configured to filter SNMP from the management network only, this is a finding.

Vulnerability Number

V-3021

Documentable

False

Rule Version

NET0890

Severity Override Guidance

Check Content Reference

Responsibility

Information Assurance Officer

Target Key

512

STIGQter: STIG Summary: Layer 2 Switch Security Technical Implementation Guide Version: 8 Release: 27 Benchmark Date: 25 Jan 2019: Network devices must only allow SNMP access from addresses belonging to the management network.

DISA Rule

Vulnerability Number

Group Title

Rule Version

Severity

CCI(s)

Weight

Fix Recommendation

Check Contents

Vulnerability Number

Documentable

Rule Version

Severity Override Guidance

Check Content Reference

Responsibility

Target Key

Comments