STIGQter STIGQter: STIG Summary: Infrastructure Router Security Technical Implementation Guide Cisco Version: 8 Release: 29 Benchmark Date: 25 Jan 2019: IP directed broadcast must be disabled on all layer 3 interfaces.

DISA Rule

SV-3083r3_rule

Vulnerability Number

V-3083

Group Title

IP directed broadcast is not disabled.

Rule Version

NET0790

Severity

CAT III

CCI(s)

Weight

10

Fix Recommendation

Disable IP directed broadcasts on all layer 3 interfaces.

Check Contents

IP directed broadcast is disabled by default in IOS version 12.0 and higher so the command "no ip directed-broadcast" will not be displayed in the running configuration--verify that the running configuration does not contain the command "ip directed-broadcast". For versions prior to 12.0 ensure the command "no ip directed-broadcast" is displayed in the running configuration.

If IP directed broadcasts are enabled on layer 3 interfaces, this is a finding.

Vulnerability Number

V-3083

Documentable

False

Rule Version

NET0790

Severity Override Guidance

IP directed broadcast is disabled by default in IOS version 12.0 and higher so the command "no ip directed-broadcast" will not be displayed in the running configuration--verify that the running configuration does not contain the command "ip directed-broadcast". For versions prior to 12.0 ensure the command "no ip directed-broadcast" is displayed in the running configuration.

If IP directed broadcasts are enabled on layer 3 interfaces, this is a finding.

Check Content Reference

M

Responsibility

Information Assurance Officer

Target Key

510

Comments