The IPsec VPN Gateway must use anti-replay mechanisms for security associations.
An XCCDF Rule
Description
Anti-replay is an IPsec security mechanism at a packet level, which helps to avoid unwanted users from intercepting and modifying an ESP packet.
- ID
- SV-207212r984303_rule
- Version
- SRG-NET-000147-VPN-000530
- Severity
- Medium
- References
- Updated
Remediation Templates
A Manual Procedure
Configure the IPsec VPN Gateway to use anti-replay mechanisms for security associations.