Skip to content
Log In

Cisco IOS Switch RTR Security Technical Implementation Guide

Rules, Groups, and Values defined within the XCCDF Benchmark

  • SRG-NET-000018-RTR-000001

    Group
    Show

  • SRG-NET-000168-RTR-000078

    Group
    Show

  • SRG-NET-000019-RTR-000007

    Group
    Show

  • SRG-NET-000362-RTR-000109

    Group
    Show

  • The Cisco switch must not be configured to have any zero-touch deployment feature enabled when connected to an operational network.

    Network devices that are configured via a zero-touch deployment or auto-loading feature can have their startup configuration or image pushed to the device for installation via TFTP or Remote Copy (...
    Rule Medium Severity
    Show

  • SRG-NET-000362-RTR-000110

    Group
    Show

  • The Cisco switch must be configured to protect against or limit the effects of denial-of-service (DoS) attacks by employing control plane protection.

    The Route Processor (RP) is critical to all network operations because it is the component used to build all forwarding paths for the data plane via control plane processes. It is also instrumental...
    Rule High Severity
    Show

  • SRG-NET-000362-RTR-000111

    Group
    Show

  • SRG-NET-000362-RTR-000112

    Group
    Show

  • SRG-NET-000362-RTR-000113

    Group
    Show

  • SRG-NET-000362-RTR-000114

    Group
    Show

  • SRG-NET-000362-RTR-000115

    Group
    Show

  • SRG-NET-000078-RTR-000001

    Group
    Show

  • SRG-NET-000076-RTR-000001

    Group
    Show

  • SRG-NET-000077-RTR-000001

    Group
    Show

  • SRG-NET-000019-RTR-000001

    Group
    Show

  • The Cisco switch must be configured to disable the auxiliary port unless it is connected to a secured modem providing encryption and authentication.

    The use of POTS lines to modems connecting to network devices provides clear text of authentication traffic over commercial circuits that could be captured and used to compromise the network. Addit...
    Rule Low Severity
    Show

  • SRG-NET-000202-RTR-000001

    Group
    Show

  • SRG-NET-000019-RTR-000002

    Group
    Show

  • The Cisco perimeter switch must be configured to enforce approved authorizations for controlling the flow of information between interconnected networks in accordance with applicable policy.

    Information flow control regulates authorized information to travel within a network and between interconnected networks. Controlling the flow of network traffic is critical so it does not introduc...
    Rule Medium Severity
    Show

Node 2

siemur/test-space

The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.

Capacity
Modules