STIGQter STIGQter: STIG Summary: Arista MLS DCS-7000 Series RTR Security Technical Implementation Guide Version: 1 Release: 3 Benchmark Date: 24 Jul 2020:

The Arista Multilayer Switch must not enable the RIP routing protocol.

DISA Rule

SV-75391r1_rule

Vulnerability Number

V-60933

Group Title

SRG-NET-000168-RTR-000077

Rule Version

AMLS-L3-000320

Severity

CAT II

CCI(s)

Weight

10

Fix Recommendation

Disable RIP via the "no router rip" command.

Check Contents

Review the router configuration to determine if RIP is enabled via the "show running-config" command. RIP is disabled by default on an Arista switch and is only enabled when explicitly configured. If a configuration statement enabling RIP is in the Arista Multilayer Switch configuration, this is a finding.

Vulnerability Number

V-60933

Documentable

False

Rule Version

AMLS-L3-000320

Severity Override Guidance

Review the router configuration to determine if RIP is enabled via the "show running-config" command. RIP is disabled by default on an Arista switch and is only enabled when explicitly configured. If a configuration statement enabling RIP is in the Arista Multilayer Switch configuration, this is a finding.

Check Content Reference

M

Target Key

2823

Comments