I - Mission Critical Public
Rules and Groups employed by this XCCDF Profile
-
AAAA addresses must not be configured in a zone for hosts that are not IPv6-aware.
DNS is only responsible for resolving a domain name to an IP address. Applications and operating systems are responsible for processing the IPv6 or IPv4 record that may be returned. With this in ...Rule Medium Severity -
SRG-APP-000142-DNS-000014
Group -
The Windows 2012 DNS Server must be configured to prohibit or restrict unapproved ports and protocols.
In order to prevent unauthorized connection of devices, unauthorized transfer of information, or unauthorized tunneling (i.e., embedding of data types within data types), organizations must disable...Rule Medium Severity -
SRG-APP-000390-DNS-000048
Group -
The Windows 2012 DNS Server must require devices to re-authenticate for each dynamic update request connection attempt.
Without re-authenticating devices, unidentified or unknown devices may be introduced, thereby facilitating malicious activity. In addition to the re-authentication requirements associated with ses...Rule Medium Severity
Node 2
The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.
Capacity
Modules