Item Search

NameAudit NamePluginCategory
DISA STIG Java Runtime Environment (JRE) 6 STIG for Windows XPDISA STIG Java JRE 6 for Windows XP v1r4Windows
DISA_STIG_Kubernetes_v1r5.audit from DISA Kubernetes v1r5 STIGDISA STIG Kubernetes v1r5Unix
DISA_STIG_Kubernetes_v1r8.audit from DISA Kubernetes v1r8 STIGDISA STIG Kubernetes v1r8Unix
DISA_STIG_Kubernetes_v1r10.audit from DISA Kubernetes v1r10 STIGDISA STIG Kubernetes v1r10Unix
DISA_STIG_Kubernetes_v2r1.audit from DISA Kubernetes v2r1 STIGDISA STIG Kubernetes v2r1Unix
DISA_STIG_Microsoft_Dot_Net_Framework_4.0_v1r9.audit from DISA Microsoft DotNet Framework 4.0 STIG v1r9 STIGDISA STIG for Microsoft Dot Net Framework 4.0 v1r9Windows
DISA_STIG_Mozilla_Firefox_v5r2_Linux.audit from DISA Mozilla Firefox v5r2 STIGDISA STIG Mozilla Firefox Linux v5r2Unix
DISA_STIG_Mozilla_Firefox_v5r2_Windows.audit from DISA Mozilla Firefox v5r2 STIGDISA STIG Mozilla Firefox Windows v5r2Windows
DISA_STIG_Mozilla_Firefox_v6r2_Windows.audit from DISA Mozilla Firefox v6r2 STIGDISA STIG Mozilla Firefox Windows v6r2Windows
DISA_STIG_Mozilla_Firefox_v6r4_Linux.audit from DISA Mozilla Firefox v6r4 STIGDISA STIG Mozilla Firefox Linux v6r4Unix
DISA_STIG_Mozilla_Firefox_v6r4_MacOS.audit from DISA Mozilla Firefox v6r4 STIGDISA STIG Mozilla Firefox MacOS v6r4Unix
DISA_STIG_Mozilla_Firefox_v6r5_MacOS.audit from DISA Mozilla Firefox v6r5 STIGDISA STIG Mozilla Firefox MacOS v6r5Unix
NET-IPV6-011 - Outbound ICMPv6 traffic is not blocked - 'permit icmp IPV6 Network 2000::/3 echo-request'DISA STIG Cisco Perimeter L3 Switch v8r32Cisco

SYSTEM AND COMMUNICATIONS PROTECTION

NET-IPV6-011 - Outbound ICMPv6 traffic is not blocked - 'permit icmp IPV6 Network 2000::/3 time-exceeded'DISA STIG Cisco Perimeter L3 Switch v8r32Cisco

SYSTEM AND COMMUNICATIONS PROTECTION

NET-IPV6-016 - ICMPv6 unreachable notifications and redirects must be disabled - 'no ipv6 redirects'DISA STIG Cisco Perimeter L3 Switch v8r32Cisco

SYSTEM AND COMMUNICATIONS PROTECTION

NET-IPV6-017 - IPv6 Routing Header is not blocked - 'permit type 2'DISA STIG Cisco Perimeter L3 Switch v8r32Cisco

SYSTEM AND COMMUNICATIONS PROTECTION

NET-IPV6-024 - IPv6 6-to-4 addresses are not filtered - 'Egress deny ipv6 2002::/16 any log'DISA STIG Cisco Perimeter L3 Switch v8r32Cisco

SYSTEM AND COMMUNICATIONS PROTECTION

NET-IPV6-028 - IPv6 Unspecified ADDR is not blocked - 'deny ipv6 ::/128 any log'DISA STIG Cisco Perimeter L3 Switch v8r32Cisco

SYSTEM AND COMMUNICATIONS PROTECTION

NET-IPV6-032 - IPv6 Unique Local Unicast ADDR are not blocked - 'deny ipv6 any FC00::7 log'DISA STIG Cisco Perimeter L3 Switch v8r32Cisco

SYSTEM AND COMMUNICATIONS PROTECTION

NET-IPV6-034 - IPv6 Egress Outbound Spoofing Filter - 'deny ipv6 any any log'DISA STIG Cisco Perimeter L3 Switch v8r32Cisco

SYSTEM AND COMMUNICATIONS PROTECTION

NET-IPV6-047 - IPv4 Interfaces in NAT-PT receive IPv6DISA STIG Cisco Perimeter L3 Switch v8r32Cisco
NET-IPV6-060 - Packet with invalid Hop-by-Hop header - Inbound ACLDISA STIG Cisco Perimeter L3 Switch v8r32Cisco

SYSTEM AND COMMUNICATIONS PROTECTION

NET-IPV6-061 - Packet with invalid Destination Option header - Outbound ACLDISA STIG Cisco Perimeter L3 Switch v8r32Cisco

SYSTEM AND COMMUNICATIONS PROTECTION

NET-IPV6-062 - Endpoint Identification option not filtered - Outbound ACLDISA STIG Cisco Perimeter L3 Switch v8r32Cisco

SYSTEM AND COMMUNICATIONS PROTECTION

NET-IPV6-065 - The 6-to-4 router is not filtering protocol 41 - 'ip access-group IPV4_EGRESS_FILTER'DISA STIG Cisco Perimeter L3 Switch v8r32Cisco

SYSTEM AND COMMUNICATIONS PROTECTION

NET-MCAST-001 - PIM enabled on wrong interfaces -'ip multicast-routing'DISA STIG Cisco Perimeter L3 Switch v8r32Cisco

CONFIGURATION MANAGEMENT

NET-MCAST-002 - PIM neighbor filter is not configured - 'ip pim neighbor-filter IP_PIM_NEIGHBORS_ACL'DISA STIG Cisco Perimeter L3 Switch v8r32Cisco

SYSTEM AND COMMUNICATIONS PROTECTION

NET-VLAN-007 - Ensure trunking is disabled on all access ports.DISA STIG Cisco Perimeter Router and L3 Switch v8r31Cisco
NET-VLAN-008 - A dedicated VLAN is required for all trunk ports.DISA STIG Cisco Perimeter Router and L3 Switch v8r31Cisco
NET-VLAN-008 - A dedicated VLAN is required for all trunk ports.DISA STIG Cisco Perimeter L3 Switch v8r32Cisco
NET0918 - Outbound ICMP Time Exceed messages must be blocked to prevent network discovery by unauthorized users.DISA STIG Cisco Perimeter L3 Switch v8r32Cisco

SYSTEM AND COMMUNICATIONS PROTECTION

NET0921 - Bind egress filters to correct interfaceDISA STIG Cisco Perimeter L3 Switch v8r32Cisco

SYSTEM AND COMMUNICATIONS PROTECTION

NET0927 - RFC1918 addresses are not blocked - '10.0.0.0/8 Network Blocked'DISA STIG Cisco Perimeter L3 Switch v8r32Cisco

SYSTEM AND COMMUNICATIONS PROTECTION

NET0966 - Control plan protection is not enabled - 'inbound ACL option'DISA STIG Cisco Perimeter L3 Switch v8r32Cisco
NET0966 - Control plan protection is not enabled - 'Step 4: Verify that the CoPP policy is enabled. (service-policy)'DISA STIG Cisco Perimeter L3 Switch v8r32Cisco

CONFIGURATION MANAGEMENT

NET0987 - Managed network has access to OOBM gateway router - 'ip receive acl IP_RECEIVE_ACL'DISA STIG Cisco Perimeter L3 Switch v8r32Cisco

SYSTEM AND COMMUNICATIONS PROTECTION

NET0989 - Management traffic leaks into the managed network - 'access-list OOBM_INGRESS_ACL permit'DISA STIG Cisco Perimeter L3 Switch v8r32Cisco

SYSTEM AND COMMUNICATIONS PROTECTION

NET0994 - Management interface is assigned to a user VLAN - 'MGMT VLAN ID'DISA STIG Cisco Perimeter L3 Switch v8r32Cisco

SYSTEM AND COMMUNICATIONS PROTECTION

NET0995 - Management VLAN has invalid addressesDISA STIG Cisco Perimeter L3 Switch v8r32Cisco
NET1000 - Management traffic is not blocked by egress ACL - 'Egress ACL Configured on Interface'DISA STIG Cisco Perimeter L3 Switch v8r32Cisco

SYSTEM AND COMMUNICATIONS PROTECTION

NET1003 - Mgmt VLAN does not have correct IP addressDISA STIG Cisco Perimeter L3 Switch v8r32Cisco
NET1623 - Authentication required for console access - 'CON port (login authentication AUTH_LIST)'DISA STIG Cisco Perimeter L3 Switch v8r32Cisco

ACCESS CONTROL

NET1637 - Management connections are not restricted - 'VTY port (access-class ACL_LIST in)'DISA STIG Cisco Perimeter L3 Switch v8r32Cisco

SYSTEM AND COMMUNICATIONS PROTECTION

NET1637 - Management connections are not restricted - 'VTY port (access-list VTY_ACL deny any log)'DISA STIG Cisco Perimeter L3 Switch v8r32Cisco

SYSTEM AND COMMUNICATIONS PROTECTION

NET1638 - Management connections must be secured by FIPS 140-2 -'ssh algorithm encryption'DISA STIG Cisco Perimeter L3 Switch v8r32Cisco

SYSTEM AND COMMUNICATIONS PROTECTION

NET1639 - Management connection does not timeoutDISA STIG Cisco Perimeter L3 Switch v8r32Cisco

ACCESS CONTROL

NET1645 - SSH session timeout is not 60 seconds or lessDISA STIG Cisco Perimeter L3 Switch v8r32Cisco

ACCESS CONTROL

NET1807 - Management traffic is not restricted - 'crypto map OOBM_VPN (match address OOBM_VPN_ACL)'DISA STIG Cisco Perimeter L3 Switch v8r32Cisco

SYSTEM AND COMMUNICATIONS PROTECTION

SNMPv3 CONFIG IF STATEMENTDISA STIG Cisco Perimeter L3 Switch v8r32Cisco
SNMPv3 CONFIG IF STATEMENT With ACLDISA STIG Cisco Perimeter L3 Switch v8r32Cisco