3.14 Ensure Accept RIP is not enabled

Information

The Accept RIP is a Global property setting which you can set either to accept or reject the RIP packets which is using UDP Port 520. RIP maintains information about reachable systems and routes to those systems.

Rationale:

The security policy is made up of rules in the Firewall Rule Base. Other than the rules defined by the administrator, The Check Point Security Gateway also creates Implied Rules, which are defined in the Firewall Global Properties. The Check Point Security Gateway places the implied rules first, last, or before last in the Firewall Rule Base. The administrator can decide whether or not to log implied rules.

First - The Implicit rule will be placed before the explicit rules. Last - The Implicit rule will be placed after the explicit rules. Before Last - The Implicit rule will be placed before the last explicit rule.

NOTE: Nessus has not performed this check. Please review the benchmark to ensure target compliance.

Solution

Go to the following path and Configured the Accept RIP.

SmartConsole > Gateways & Servers > select each Gateway > Firewall
Unchecked the Accept RIP

Default Value:

Disabled

See Also

https://workbench.cisecurity.org/files/2828

Item Details

Category: CONFIGURATION MANAGEMENT, SYSTEM AND INFORMATION INTEGRITY

References: 800-53|CM-2, 800-53|SI-4, CSCv7|9.2, CSCv7|11.1

Plugin: CheckPoint

Control ID: 315842399277496e78c85e1467e92a0146006ee321b1be0b9d3d653f2c0a4e7d