CIS Cisco Firewall ASA 8 L1 v4.1.0

Warning! Audit Deprecated

This audit file has been deprecated and will be removed in a future update.

View Next Version

Audit Details

Name: CIS Cisco Firewall ASA 8 L1 v4.1.0

Updated: 1/11/2022

Authority: CIS

Plugin: Cisco

Revision: 1.10

Estimated Item Count: 83

File Details

Filename: CIS_v4.1.0_Cisco_Firewall_ASA_8_Level_1.audit

Size: 123 kB

MD5: f8a41ce769b92739bc8e2cbf1bb8e0e3

SHA256: b630e2f0c4a756ac3fd5c3fdad29619a772e9dbf07d3ae27974555b760366a6c

Audit Changelog


Revision 1.10 Jan 11, 2022 Miscellaneous Audit deprecated. Metadata updated. References updated.
Revision 1.9 Nov 29, 2021 Functional Update 1.5.1 Ensure 'ASDM banner' is set Miscellaneous References updated.
Revision 1.8 Jun 17, 2021 Miscellaneous Metadata updated. References updated.
Revision 1.7 Sep 29, 2020 Miscellaneous References updated.
Revision 1.6 Apr 15, 2020 Miscellaneous Metadata updated. References updated.
Revision 1.5 Nov 18, 2019 Miscellaneous Platform check updated.
Revision 1.4 Jul 30, 2019 Functional Update 1.5.1 Ensure 'ASDM banner' is set 1.5.2 Ensure 'EXEC banner' is set 1.5.3 Ensure 'LOGIN banner' is set 1.5.4 Ensure 'MOTD banner' is set Miscellaneous References updated. Variables updated.
Revision 1.3 Feb 6, 2019 Miscellaneous Metadata updated. References updated.
Revision 1.2 Dec 12, 2018 Informational Update 1.2.4 Ensure 'Unused Interfaces' is disable 2.4 Ensure DHCP services are disabled for untrusted interfaces - dhcpd 2.4 Ensure DHCP services are disabled for untrusted interfaces - dhcprelay 2.5 Ensure ICMP is restricted for untrusted interfaces 3.12 Ensure explicit deny in access lists is configured correctly 3.2 Ensure intrusion prevention is enabled for untrusted interfaces 3.3 Ensure packet fragments are restricted for untrusted interfaces 3.7 Ensure 'ip verify' is set to 'reverse-path' for untrusted interfaces 3.8 Ensure 'security-level' is set to '0' for Internet-facing interface Miscellaneous References updated.
Revision 1.1 Jul 10, 2018 Functional Update 1.10.10 Ensure 'logging buffered severity level' is greater than or equal to '3' 1.10.6 Ensure 'logging history severity level' is set to greater than or equal to '5' 1.4.4.1 Ensure 'aaa command authorization' is configured correctly 3.1 Ensure DNS services are configured correctly - name-server 3.4 Ensure non-default application inspection is configured correctly Informational Update 1.3.1 Ensure 'Image Integrity' is correct 1.6.3 Ensure 'RSA key pair' is greater than or equal to 2048 bits 3.4 Ensure non-default application inspection is configured correctly 3.5 Ensure DOS protection is enabled for untrusted interfaces 3.9 Ensure Botnet protection is enabled for untrusted interfaces Miscellaneous Metadata updated. References updated.

Detections

Analytics

CIS Cisco Firewall ASA 8 L1 v4.1.0

Warning! Audit Deprecated

Audit Details

File Details

Audit Changelog

Revision 1.10

Miscellaneous

Revision 1.9

Functional Update

Miscellaneous

Revision 1.8

Miscellaneous

Revision 1.7

Miscellaneous

Revision 1.6

Miscellaneous

Revision 1.5

Miscellaneous

Revision 1.4

Functional Update

Miscellaneous

Revision 1.3

Miscellaneous

Revision 1.2

Informational Update

Miscellaneous

Revision 1.1

Functional Update

Informational Update

Miscellaneous

Detections

Analytics

CIS Cisco Firewall ASA 8 L1 v4.1.0 Download File

Warning! Audit Deprecated

Audit Details

File Details

Audit Changelog

Miscellaneous

Functional Update

Miscellaneous

Miscellaneous

Miscellaneous

Miscellaneous

Miscellaneous

Functional Update

Miscellaneous

Miscellaneous

Informational Update

Miscellaneous

Functional Update

Informational Update

Miscellaneous

CIS Cisco Firewall ASA 8 L1 v4.1.0