Skip to content

Network Infrastructure Policy Security Technical Implementation Guide

Rules, Groups, and Values defined within the XCCDF Benchmark

  • NET0130

    <GroupDescription></GroupDescription>
    Group
  • All external connections must be validated and approved by the Authorizing Official (AO) and the Connection Approval Office (CAO) and meeting Connection Approval Process (CAP) requirements.

    &lt;VulnDiscussion&gt;Every site must have a security policy to address filtering of the traffic to and from those connections. This documentation...
    Rule Medium Severity
  • NET0131

    <GroupDescription></GroupDescription>
    Group
  • Prior to having external connection provisioned between enclaves, a Memorandum of Agreement (MOA) or Memorandum of Understanding (MOU) must be established.

    &lt;VulnDiscussion&gt;Prior to establishing a connection with another activity, a Memorandum of Understanding (MOU) or Memorandum of Agreement (MOA...
    Rule Medium Severity
  • NET0135

    <GroupDescription></GroupDescription>
    Group
  • External connections to the network must be reviewed and the documentation updated semi-annually.

    &lt;VulnDiscussion&gt;A network is only as secure as its weakest link. It is imperative that all external connections be reviewed and kept to a min...
    Rule Medium Severity
  • NET0168

    <GroupDescription></GroupDescription>
    Group
  • If the site has a non-DoD external connection (i.e. Approved Gateway), an Intrusion Detection and Prevention System (IDPS) must be located between the sites Approved Gateway and the perimeter router.

    &lt;VulnDiscussion&gt;The incorrect placement of the external IDPS may allow unauthorized access to go undetected and limit the ability of security...
    Rule Medium Severity
  • NET0170

    <GroupDescription></GroupDescription>
    Group
  • External network connections must not bypass the enclaves perimeter security.

    &lt;VulnDiscussion&gt;Without taking the proper safeguards, external networks connected to the organization will impose security risks unless prope...
    Rule Medium Severity

The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.

Capacity
Modules