Ensure 'RIP authentication' is enabled

Information

Enables the authentication of RIPv2 neighbor before routing information is received from the neighbor

Rationale:

Enabling the routing protocol authentication prevents against attackers who can send wrong routing information in order to redirect traffic to their network or send malformed packets in order to saturate and to exhaust the control plane.

Solution

Step 1
Choose Devices > Device Management, and edit the FTD device.

Step 2
Select the Routing tab.

Step 3
Select RIP from the table of contents.

See Also

https://www.cisco.com/c/en/us/td/docs/security/firepower/640/hardening/ftd/FTD_Hardening_Guide_v64.html

Item Details

Category: SYSTEM AND COMMUNICATIONS PROTECTION

References: 800-53|SC-8(1)

Plugin: Cisco_Firepower

Control ID: a795a6f9e49898c1434f4e0002ecaf456de66a67ddce2b26c29cbd7bbe506814