II - Mission Support Classified
Rules and Groups employed by this XCCDF Profile
-
A policy must be implemented to keep Bogon/Martian rulesets up to date.
A Bogon route or Martian address is a type of packet that should never be routed inbound through the perimeter device. Bogon routes and Martian addresses are commonly found as the source addresses...Rule Medium Severity -
NET0998
Group -
A dedicated management network must be implemented.
To deploy a management network for the purpose of controlling, monitoring, and restricting management traffic, a separate management subnet must be implemented. Define a large enough address block ...Rule Medium Severity -
NET1025
Group -
A minimum of two syslog servers must be deployed in the management network.
Maintaining an audit trail of system activity logs can help identify configuration errors, understand past intrusions, troubleshoot service disruptions, and react to probes and scans of the network.Rule Low Severity
Node 2
The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.
Capacity
Modules