STIGQter STIGQter: STIG Summary: Intrusion Detection and Prevention Systems (IDPS) Security Requirements Guide Version: 2 Release: 5 Benchmark Date: 25 Oct 2019: The IDPS must block outbound traffic containing known and unknown DoS attacks by ensuring that security policies, signatures, rules, and anomaly detection techniques are applied to outbound communications traffic.

DISA Rule

SV-45593r2_rule

Vulnerability Number

V-34707

Group Title

SRG-NET-000192-IDPS-00140

Rule Version

SRG-NET-000192-IDPS-00140

Severity

CAT II

CCI(s)

Weight

10

Fix Recommendation

Configure the IDPS to block outbound traffic containing known and unknown DoS attacks, by ensuring that security policies, signatures, rules, and anomaly detection techniques are applied to outbound communications traffic.

Check Contents

Verify the IDPS blocks outbound traffic containing known and unknown DoS attacks by ensuring that security policies, signatures, rules, and anomaly detection techniques are applied to outbound communications traffic.

If the IDPS does not block outbound traffic containing known and unknown DoS attacks, by ensuring that security policies, signatures, rules, and anomaly detection techniques are applied to outbound communications traffic, this is a finding.

Vulnerability Number

V-34707

Documentable

False

Rule Version

SRG-NET-000192-IDPS-00140

Severity Override Guidance

Verify the IDPS blocks outbound traffic containing known and unknown DoS attacks by ensuring that security policies, signatures, rules, and anomaly detection techniques are applied to outbound communications traffic.

If the IDPS does not block outbound traffic containing known and unknown DoS attacks, by ensuring that security policies, signatures, rules, and anomaly detection techniques are applied to outbound communications traffic, this is a finding.

Check Content Reference

M

Target Key

2358

Comments