Cisco ASA IPS Security Technical Implementation Guide
Rules, Groups, and Values defined within the XCCDF Benchmark
-
The Cisco ASA must be configured to send log records to the syslog server for specific facility and severity level.
Without the capability to generate audit records with a severity code it is difficult to track and handle detection events. While auditing and logging are closely related, they are not the same. L...Rule Medium Severity -
SRG-NET-000089-IDPS-00010
Group -
SRG-NET-000192-IDPS-00140
Group -
SRG-NET-000228-IDPS-00196
Group -
The Cisco ASA must be configured to use Advanced Malware Protection (AMP) features to detect and block the transmission of malicious software and malware.
Mobile code is defined as software modules obtained from remote systems, transferred across a network, and then downloaded and executed on a local system without explicit installation or execution ...Rule Medium Severity -
SRG-NET-000229-IDPS-00163
Group -
SRG-NET-000246-IDPS-00205
Group -
SRG-NET-000249-IDPS-00176
Group -
The Cisco ASA must be configured to block malicious code.
Configuring the IDPS to delete and/or quarantine based on local organizational incident handling procedures minimizes the impact of this code on the network.Rule Medium Severity -
SRG-NET-000249-IDPS-00221
Group
Node 2
The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.