Skip to content

III - Administrative Sensitive

Rules and Groups employed by this XCCDF Profile

  • The Juniper EX switch must be configured to manage excess bandwidth to limit the effects of packet flooding types of denial of service (DoS) attacks.

    <VulnDiscussion>Denial of service is a condition when a resource is not available for legitimate users. Packet flooding DDoS attacks are refe...
    Rule Medium Severity
  • SRG-NET-000331-L2S-000001

    <GroupDescription></GroupDescription>
    Group
  • The Juniper EX switch must be configured to permit authorized users to select a user session to capture.

    &lt;VulnDiscussion&gt;Without the capability to select a user session to capture/record or view/hear, investigations into suspicious or harmful eve...
    Rule Medium Severity
  • SRG-NET-000332-L2S-000002

    <GroupDescription></GroupDescription>
    Group
  • The Juniper EX switch must be configured to permit authorized users to remotely view, in real time, all content related to an established user session from a component separate from the layer 2 switch.

    &lt;VulnDiscussion&gt;Without the capability to remotely view/hear all content related to a user session, investigations into suspicious user activ...
    Rule Medium Severity

The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.

Capacity
Modules