STIGQter: STIG Summary: Network Infrastructure Policy Security Technical Implementation Guide Version: 9 Release: 10 Benchmark Date: 24 Jan 2020:

All global address ranges used on unclassified and classified networks must be properly registered with the DoD Network Information Center (NIC).

DISA Rule

SV-41919r3_rule

Vulnerability Number

V-31632

Group Title

Non-registered or unauthorized IP addresses.

Rule Version

NET0180

Severity

CAT II

CCI(s)

• CCI-000366 - The organization implements the security configuration settings.

Weight

10

Fix Recommendation

Submit any unregistered and/or unauthorized global IP addresses to the DoD Network Information Center (NIC) for registration.

Check Contents

Validate global IP addresses in use on unclassified or classified networks registered through the DoD Network Information Center. For NIPRNet, go to the website https://www.nic.mil. For SIPRNet, go to the web portal at http://www.ssc.smil.mil. To verify Department of the Navy IP addresses, go to http://infosec.navy.mil.ipaddress.com.

If the site is using an address space that has not been registered and allocated to the site, this is a finding.

Vulnerability Number

V-31632

Documentable

False

Rule Version

NET0180

Severity Override Guidance

Validate global IP addresses in use on unclassified or classified networks registered through the DoD Network Information Center. For NIPRNet, go to the website https://www.nic.mil. For SIPRNet, go to the web portal at http://www.ssc.smil.mil. To verify Department of the Navy IP addresses, go to http://infosec.navy.mil.ipaddress.com.

If the site is using an address space that has not been registered and allocated to the site, this is a finding.

Check Content Reference

M

Responsibility

Network Security Officer

Target Key

838

Comments