Skip to content
Log In

II - Mission Support Classified

Rules and Groups employed by this XCCDF Profile

  • If Border Gateway Protocol (BGP) is enabled on the HP FlexFabric Switch, the HP FlexFabric Switch must not be a BGP peer with a HP FlexFabric Switch from an Autonomous System belonging to any Alternate Gateway (AG).

    The perimeter router will not use a routing protocol to advertise NIPRNet addresses to Alternate Gateways. Most ISPs use Border Gateway Protocol (BGP) to share route information with other autonomo...
    Rule Medium Severity
    Show

  • SRG-NET-000131-RTR-000035

    Group
    Show

  • The HP FlexFabric Switch must be configured to disable non-essential capabilities.

    A compromised router introduces risk to the entire network infrastructure as well as data resources that are accessible via the network. The perimeter defense has no oversight or control of attacks...
    Rule Medium Severity
    Show

  • SRG-NET-000025-RTR-000020

    Group
    Show

  • The HP FlexFabric Switch must enable neighbor authentication for all control plane protocols.

    A rogue router could send a fictitious routing update to convince a site's perimeter router to send traffic to an incorrect or even a rogue destination. This diverted traffic could be analyzed to l...
    Rule Medium Severity
    Show

Node 2

siemur/test-space

The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.

Capacity
Modules