Skip to content
Catalogs
XCCDF
Firewall Security Requirements Guide
SRG-NET-000715
The firewall must be configured to implement physically or logically separate subnetworks to isolate organization-defined critical system components and functions.
The firewall must be configured to implement physically or logically separate subnetworks to isolate organization-defined critical system components and functions. An XCCDF Rule
The firewall must be configured to implement physically or logically separate subnetworks to isolate organization-defined critical system components and functions.
Medium Severity
<VulnDiscussion>Separating critical system components and functions from other noncritical system components and functions through separate subnetworks may be necessary to reduce susceptibility to a catastrophic or debilitating breach or compromise that results in system failure. For example, physically separating the command and control function from the in-flight entertainment function through separate subnetworks in a commercial aircraft provides an increased level of assurance in the trustworthiness of critical system functions.</VulnDiscussion><FalsePositives></FalsePositives><FalseNegatives></FalseNegatives><Documentable>false</Documentable><Mitigations></Mitigations><SeverityOverrideGuidance></SeverityOverrideGuidance><PotentialImpacts></PotentialImpacts><ThirdPartyTools></ThirdPartyTools><MitigationControl></MitigationControl><Responsibility></Responsibility><IAControls></IAControls>