Cisco NX OS Switch RTR Security Technical Implementation Guide
Rules, Groups, and Values defined within the XCCDF Benchmark
-
SRG-NET-000018-RTR-000001
Group -
The Cisco switch must be configured to enforce approved authorizations for controlling the flow of information within the network based on organization-defined information flow control policies.
Information flow control regulates where information is allowed to travel within a network and between interconnected networks. The flow of all network traffic must be monitored and controlled so i...Rule Medium Severity -
SRG-NET-000230-RTR-000001
Group -
SRG-NET-000230-RTR-000003
Group -
The Cisco switch must be configured to use keys with a duration not exceeding 180 days for authenticating routing protocol messages.
If the keys used for routing protocol authentication are guessed, the malicious user could create havoc within the network by advertising incorrect routes and redirecting traffic. Some routing prot...Rule Medium Severity -
SRG-NET-000168-RTR-000077
Group -
SRG-NET-000168-RTR-000078
Group -
SRG-NET-000019-RTR-000007
Group -
The Cisco switch must be configured to have all inactive layer 3 interfaces disabled.
An inactive interface is rarely monitored or controlled and may expose a network to an undetected attack on that interface. Unauthorized personnel with access to the communication facility could ga...Rule Low Severity -
SRG-NET-000131-RTR-000083
Group
Node 2
The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.