STIGQter: STIG Summary: Firewall Security Requirements Guide Version: 1 Release: 4 Benchmark Date: 26 Jul 2019: The firewall must be configured to allow the system administrator to select a subset of DoD-required auditable events.

DISA Rule

SV-94193r1_rule

Vulnerability Number

V-79487

Group Title

SRG-NET-000113-FW-000005

Rule Version

SRG-NET-000113-FW-000005

Severity

CAT III

CCI(s)

• CCI-000169 - The information system provides audit record generation capability for the auditable events defined in AU-2 a. at organization-defined information system components.

Weight

10

Fix Recommendation

Configure the firewall audit management functions to allow the authorized system administrator to select from a list of auditable events, to include the firewall's network interfaces, rules, and policies.

Check Contents

Obtain a list of required auditable events from the site representative or the System Security Plan (SSP). View the firewall configuration. Verify the firewall allows the system administrator to select a subset of DoD-required auditable events.

If the firewall is not configured to allow the system administrator to select a subset of DoD-required events, this is a finding.

Vulnerability Number

V-79487

Documentable

False

Rule Version

SRG-NET-000113-FW-000005

Severity Override Guidance

Obtain a list of required auditable events from the site representative or the System Security Plan (SSP). View the firewall configuration. Verify the firewall allows the system administrator to select a subset of DoD-required auditable events.

If the firewall is not configured to allow the system administrator to select a subset of DoD-required events, this is a finding.

Check Content Reference

M

Target Key

3377

Comments