AIX must not have IP forwarding for IPv6 enabled unless the system is an IPv6 router.

An XCCDF Rule

Details
Profiles

Description

If the system is configured for IP forwarding and is not a designated router, it could be used to bypass network security by providing a path for communication not filtered by network devices.

ID: SV-215265r991589_rule
Version: AIX7-00-002066
Severity: Medium
References: CCI-000366
Updated: 24 days ago

Remediation Templates

Disable IPv6 forwarding on the system: 
# /usr/sbin/no -p -o ip6forwarding=0

AIX must not have IP forwarding for IPv6 enabled unless the system is an IPv6 router.

Description

Remediation Templates

A Manual Procedure