Skip to content

II - Mission Support Public

Rules and Groups employed by this XCCDF Profile

  • NET0445

    <GroupDescription></GroupDescription>
    Group
  • Two-factor authentication must be implemented to restrict access to all network elements.

    &lt;VulnDiscussion&gt;Without secure management implemented with authenticated access controls, strong two-factor authentication, encryption of the...
    Rule Medium Severity
  • NET0810

    <GroupDescription></GroupDescription>
    Group
  • Two Network Time Protocol (NTP) servers must be deployed in the management network.

    &lt;VulnDiscussion&gt;NTP provides an efficient and scalable method for managed network elements to actively synchronize to an accurate time source...
    Rule Low Severity
  • NET0928

    <GroupDescription></GroupDescription>
    Group
  • A policy must be implemented to keep Bogon/Martian rulesets up to date.

    &lt;VulnDiscussion&gt;A Bogon route or Martian address is a type of packet that should never be routed inbound through the perimeter device. Bogon...
    Rule Medium Severity
  • NET0998

    <GroupDescription></GroupDescription>
    Group
  • A dedicated management network must be implemented.

    &lt;VulnDiscussion&gt;To deploy a management network for the purpose of controlling, monitoring, and restricting management traffic, a separate man...
    Rule Medium Severity
  • NET1025

    <GroupDescription></GroupDescription>
    Group
  • A minimum of two syslog servers must be deployed in the management network.

    &lt;VulnDiscussion&gt;Maintaining an audit trail of system activity logs can help identify configuration errors, understand past intrusions, troubl...
    Rule Low Severity

The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.

Capacity
Modules