Item Search

NameAudit NamePluginCategory
DISA_STIG_Kubernetes_v1r5.audit from DISA Kubernetes v1r5 STIGDISA STIG Kubernetes v1r5Unix
DISA_STIG_Kubernetes_v1r8.audit from DISA Kubernetes v1r8 STIGDISA STIG Kubernetes v1r8Unix
DISA_STIG_Kubernetes_v1r10.audit from DISA Kubernetes v1r10 STIGDISA STIG Kubernetes v1r10Unix
DISA_STIG_Kubernetes_v2r1.audit from DISA Kubernetes v2r1 STIGDISA STIG Kubernetes v2r1Unix
DISA_STIG_Microsoft_Dot_Net_Framework_4.0_v1r9.audit from DISA Microsoft DotNet Framework 4.0 STIG v1r9 STIGDISA STIG for Microsoft Dot Net Framework 4.0 v1r9Windows
DISA_STIG_Mozilla_Firefox_v5r2_Linux.audit from DISA Mozilla Firefox v5r2 STIGDISA STIG Mozilla Firefox Linux v5r2Unix
DISA_STIG_Mozilla_Firefox_v5r2_Windows.audit from DISA Mozilla Firefox v5r2 STIGDISA STIG Mozilla Firefox Windows v5r2Windows
DISA_STIG_Mozilla_Firefox_v6r2_Windows.audit from DISA Mozilla Firefox v6r2 STIGDISA STIG Mozilla Firefox Windows v6r2Windows
DISA_STIG_Mozilla_Firefox_v6r4_Linux.audit from DISA Mozilla Firefox v6r4 STIGDISA STIG Mozilla Firefox Linux v6r4Unix
DISA_STIG_Mozilla_Firefox_v6r4_MacOS.audit from DISA Mozilla Firefox v6r4 STIGDISA STIG Mozilla Firefox MacOS v6r4Unix
DISA_STIG_Mozilla_Firefox_v6r5_MacOS.audit from DISA Mozilla Firefox v6r5 STIGDISA STIG Mozilla Firefox MacOS v6r5Unix
NET-IPV6-004 - IPv6 Router Advertisements must be suppressed.DISA STIG Cisco Perimeter L3 Switch v8r32Cisco

SYSTEM AND COMMUNICATIONS PROTECTION

NET-IPV6-011 - Outbound ICMPv6 traffic is not blocked - 'deny icmp any any log-input'DISA STIG Cisco Perimeter L3 Switch v8r32Cisco

SYSTEM AND COMMUNICATIONS PROTECTION

NET-IPV6-016 - ICMPv6 unreachable notifications and redirects must be disabled - 'Null0 - no ipv6 unreachables'DISA STIG Cisco Perimeter L3 Switch v8r32Cisco

SYSTEM AND COMMUNICATIONS PROTECTION

NET-IPV6-017 - IPv6 Routing Header is not blocked - 'deny routing log'DISA STIG Cisco Perimeter L3 Switch v8r32Cisco

SYSTEM AND COMMUNICATIONS PROTECTION

NET-IPV6-024 - IPv6 6-to-4 addresses are not filtered - 'deny ipv6 any 2002::/16 log'DISA STIG Cisco Perimeter L3 Switch v8r32Cisco

SYSTEM AND COMMUNICATIONS PROTECTION

NET-IPV6-025 - IPv6 Site Local Unicast ADDR must not be definedDISA STIG Cisco Perimeter L3 Switch v8r32Cisco

CONFIGURATION MANAGEMENT

NET-IPV6-028 - IPv6 Unspecified ADDR is not blocked - 'deny ipv6 any ::/128 log'DISA STIG Cisco Perimeter L3 Switch v8r32Cisco

SYSTEM AND COMMUNICATIONS PROTECTION

NET-IPV6-033 - IPv6 routers are not configured with CEF enabledDISA STIG Cisco Perimeter L3 Switch v8r32Cisco

CONFIGURATION MANAGEMENT

NET-IPV6-065 - The 6-to-4 router is not filtering protocol 41 - 'ip access-list IPV4_EGRESS_FILTER'DISA STIG Cisco Perimeter L3 Switch v8r32Cisco

SYSTEM AND COMMUNICATIONS PROTECTION

NET-IPV6-065 - The 6-to-4 router is not filtering protocol 41 - 'tunnel mode ipv6ip 6to4'DISA STIG Cisco Perimeter L3 Switch v8r32Cisco

ACCESS CONTROL

NET-MCAST-009 - No administrative scoped multicast boundary - ip multicast boundaryDISA STIG Cisco Perimeter L3 Switch v8r32Cisco

SYSTEM AND COMMUNICATIONS PROTECTION

NET-NAC-009 - The switch must be configured to use 802.1x authentication on host facing access switch ports. 'system-auth-control'DISA STIG Cisco Perimeter L3 Switch v8r32Cisco

IDENTIFICATION AND AUTHENTICATION

NET-TUNL-001 - Drop IPv4 and IPv6 packets with outdated protocols - 'deny 93 any any'DISA STIG Cisco Perimeter L3 Switch v8r32Cisco

SYSTEM AND COMMUNICATIONS PROTECTION

NET-TUNL-001 - Drop IPv4 and IPv6 packets with outdated protocols - 'deny 98 any any'DISA STIG Cisco Perimeter L3 Switch v8r32Cisco

SYSTEM AND COMMUNICATIONS PROTECTION

NET-TUNL-001 - Drop IPv4 and IPv6 packets with outdated protocols - 'IPv4 deny 93 any any'DISA STIG Cisco Perimeter L3 Switch v8r32Cisco

SYSTEM AND COMMUNICATIONS PROTECTION

NET-TUNL-001 - Drop IPv4 and IPv6 packets with outdated protocols - 'IPv4 deny tcp any any eq 1723'DISA STIG Cisco Perimeter L3 Switch v8r32Cisco

SYSTEM AND COMMUNICATIONS PROTECTION

NET-TUNL-020 - Teredo is not blocked by filtering UDP port 3544 - 'access-list ([0-9]+) deny udp any any eq 3544'DISA STIG Cisco Perimeter L3 Switch v8r32Cisco

SYSTEM AND COMMUNICATIONS PROTECTION

NET-TUNL-020 - Teredo is not blocked by filtering UDP port 3544 - 'access-list ([0-9]+) deny udp any eq 3544 any'DISA STIG Cisco Perimeter L3 Switch v8r32Cisco

SYSTEM AND COMMUNICATIONS PROTECTION

NET-TUNL-034 - L2TPv3 sessions are not authenticated - encapsulation checkDISA STIG Cisco Perimeter L3 Switch v8r32Cisco

SYSTEM AND COMMUNICATIONS PROTECTION

NET-VLAN-007 - Ensure trunking is disabled on all access ports.DISA STIG Cisco Perimeter L3 Switch v8r32Cisco
NET-VLAN-007 - Ensure trunking is disabled on all access ports.DISA STIG Cisco Perimeter Router and L3 Switch v8r31Cisco
NET-VLAN-009 - Access switchports are assigned to the native VLANDISA STIG Cisco Perimeter Router and L3 Switch v8r31Cisco
NET0164 - AG router has a routing protocol to the enclave. - 'BGP Enabled'DISA STIG Cisco Perimeter L3 Switch v8r32Cisco

CONFIGURATION MANAGEMENT

NET0166 - AG Network IP addresses are advertised in enclave - 'BGP distribute lists prefix lists'DISA STIG Cisco Perimeter L3 Switch v8r32Cisco

SYSTEM AND COMMUNICATIONS PROTECTION

NET0400 - Interior routing protocols are not authenticated - 'EIGRP Check'DISA STIG Cisco Perimeter L3 Switch v8r32Cisco
NET0400 - Interior routing protocols are not authenticated - 'IS-IS (Interface Check - isis authentication key-chain)'DISA STIG Cisco Perimeter L3 Switch v8r32Cisco

SYSTEM AND COMMUNICATIONS PROTECTION

NET0400 - Interior routing protocols are not authenticated - 'IS-IS (Interface Check - isis authentication mode)'DISA STIG Cisco Perimeter L3 Switch v8r32Cisco

SYSTEM AND COMMUNICATIONS PROTECTION

NET0400 - Interior routing protocols are not authenticated - 'RIPv2 (Key-Chain Check)'DISA STIG Cisco Perimeter L3 Switch v8r32Cisco

IDENTIFICATION AND AUTHENTICATION

NET0410 - BGP sessions are not restricted. 'ACL IP Recieve Access-List (Default Deny)'DISA STIG Cisco Perimeter L3 Switch v8r32Cisco

SYSTEM AND COMMUNICATIONS PROTECTION

NET0433 - The device is not authenticated using a AAA server - 'aaa authentication login'DISA STIG Cisco Perimeter L3 Switch v8r32Cisco

IDENTIFICATION AND AUTHENTICATION

NET0433 - The device is not authenticated using a AAA server - 'line con - authentication'DISA STIG Cisco Perimeter L3 Switch v8r32Cisco

IDENTIFICATION AND AUTHENTICATION

NET0433 - The device is not authenticated using a AAA server - 'tacacs-server host(s) - more than 2 hosts exist'DISA STIG Cisco Perimeter L3 Switch v8r32Cisco

IDENTIFICATION AND AUTHENTICATION

NET0470 - Unauthorized accounts are configured to access deviceDISA STIG Cisco Perimeter L3 Switch v8r32Cisco
NET0600 - Passwords are viewable when displaying the configDISA STIG Cisco Perimeter L3 Switch v8r32Cisco

IDENTIFICATION AND AUTHENTICATION

NET0710 - Link Layer Discovery Protocols (LLDPs) must be disabled on all external facing interfaces.DISA STIG Cisco Perimeter L3 Switch v8r32Cisco

CONFIGURATION MANAGEMENT

NET1665 - Using default SNMP community names - 'Community set to Public or Private'DISA STIG Cisco Perimeter L3 Switch v8r32Cisco

IDENTIFICATION AND AUTHENTICATION

RADIUS Authentication traffic does not use loopbackDISA STIG Cisco Perimeter L3 Switch v8r32Cisco
SNMPv2 CONFIG IF STATEMENT With ACLDISA STIG Cisco Perimeter L3 Switch v8r32Cisco
TACACS Authentication traffic does not use loopbackDISA STIG Cisco Perimeter L3 Switch v8r32Cisco