STIGQter: STIG Summary: SDN Using NV Security Technical Implementation Guide Version: 1 Release: 1 Benchmark Date: 27 Feb 2017:

SDN-enabled routers and switches must provide link state information to the SDN controller to create new forwarding decisions for the network elements.

DISA Rule

SV-87745r1_rule

Vulnerability Number

V-73093

Group Title

NET-SDN-011

Rule Version

NET-SDN-011

Severity

CAT III

CCI(s)

• CCI-000366 - The organization implements the security configuration settings.

Weight

10

Fix Recommendation

Configure all SDN-enabled routers and switches to send link state information to the SDN controllers.

Check Contents

Review the configurations for all SDN-enabled routers and switches and verify that link state information is provided to the SDN controllers.

If the SDN-enabled routers and switches do not provide link state information to the SDN controllers, this is a finding.

Note: This requirement is not applicable if the SDN deployment model does not rely on the controller for network forwarding or convergence.

Vulnerability Number

V-73093

Documentable

False

Rule Version

NET-SDN-011

Severity Override Guidance

Review the configurations for all SDN-enabled routers and switches and verify that link state information is provided to the SDN controllers.

If the SDN-enabled routers and switches do not provide link state information to the SDN controllers, this is a finding.

Note: This requirement is not applicable if the SDN deployment model does not rely on the controller for network forwarding or convergence.

Check Content Reference

M

Target Key

3089

Comments