STIGQter: STIG Summary: SDN Using NV Security Technical Implementation Guide Version: 1 Release: 1 Benchmark Date: 27 Feb 2017:

The virtual edge gateways must be deployed with routing adjacencies established with two or more physical routers.

DISA Rule

SV-87773r1_rule

Vulnerability Number

V-73121

Group Title

NET-SDN-029

Rule Version

NET-SDN-029

Severity

CAT III

CCI(s)

• CCI-000366 - The organization implements the security configuration settings.

Weight

10

Fix Recommendation

Configure the virtual edge gateways to have routing adjacencies established with two or more physical routers.

Check Contents

Review the network topology diagram for both the physical infrastructure and the network virtualization platform (NVP) to determine if the virtual edge gateways have routing adjacencies with two or more physical routers. In addition, verify that the router adjacencies are established by having the administrator enter the appropriate commands that will show the neighbor relationship between the edge gateway and upstream routers.

If the virtual edge gateway does not have routing adjacencies established with two or more physical routers, this is a finding.

Vulnerability Number

V-73121

Documentable

False

Rule Version

NET-SDN-029

Severity Override Guidance

Review the network topology diagram for both the physical infrastructure and the network virtualization platform (NVP) to determine if the virtual edge gateways have routing adjacencies with two or more physical routers. In addition, verify that the router adjacencies are established by having the administrator enter the appropriate commands that will show the neighbor relationship between the edge gateway and upstream routers.

If the virtual edge gateway does not have routing adjacencies established with two or more physical routers, this is a finding.

Check Content Reference

M

Target Key

3089

Comments