AlmaLinux OS 9 must not have unauthorized IP tunnels configured.
An XCCDF Rule
Description
IP tunneling mechanisms can be used to bypass network filtering. If tunneling is required, it must be documented with the information system security officer (ISSO).
- ID
- SV-269250r1050132_rule
- Version
- ALMA-09-019270
- Severity
- Medium
- References
- Updated
Remediation Templates
A Manual Procedure
Remove all unapproved tunnels from the system, or document them with the ISSO.