3.9 Review and Log Implied Rules

Information

Rulebase clarity helps all workers and reviewers. Stating rules explicitly in the rulebase makes policy analysis and review significantly easier. Select the Log Implied Rules' to ensure all understand when connectivity is denied or allowed through a subtle Implied Rule.

Rationale:

It is recommended to define rules explicitly rather than state them implicitly in the Implied Rules section of Global Properties. If Implied Rules are used, configure logging for implied rules by accessing the 'Global Properties' dialog box.

NOTE: Nessus has not performed this check. Please review the benchmark to ensure target compliance.

Solution

Go to the following path in the Smart Console and enabled the Log Implied Rules.

Navigate to Global Properties > Firewall
Enable the Log Implied Rules

Default Value:

Disabled

See Also

https://workbench.cisecurity.org/files/2828

Item Details

Category: AUDIT AND ACCOUNTABILITY

References: 800-53|AU-6, CSCv7|6.7

Plugin: CheckPoint

Control ID: 3829a0feec55708bcb4b84b77605366a6ae50b059bf1b070ef751de80586021c