Detections
Analytics

CCI|CCI-001368

Title

The information system enforces approved authorizations for controlling the flow of information within the system based on organization-defined information flow control policies.

Reference Item Details

Category: 2009

Audit Items

View all Reference Audit Items

NamePluginAudit Name
AMLS-L2-000100 - The Arista Multilayer Switch must enforce approved authorizations for controlling the flow of information within the network based on organization-defined information flow control policies.AristaDISA STIG Arista MLS DCS-7000 Series L2S v1r2
ARST-ND-000110 - The Arista network device must enforce approved authorizations for controlling the flow of management information within the network device based on information flow control policies.AristaDISA STIG Arista MLS EOS 4.2x NDM v1r1
ARST-RT-000010 - The Arista router must be configured to enforce approved authorizations for controlling the flow of information within the network based on organization-defined information flow control policies.AristaDISA STIG Arista MLS EOS 4.2x Router v1r1
ARST-RT-000020 - The Arista BGP router must be configured to reject inbound route advertisements for any Bogon prefixes.AristaDISA STIG Arista MLS EOS 4.2x Router v1r1
ARST-RT-000030 - The Arista BGP router must be configured to reject inbound route advertisements for any prefixes belonging to the local autonomous system (AS).AristaDISA STIG Arista MLS EOS 4.2x Router v1r1
ARST-RT-000040 - The Arista BGP router must be configured to reject inbound route advertisements from a customer edge (CE) router for prefixes that are not allocated to that customer.AristaDISA STIG Arista MLS EOS 4.2x Router v1r1
ARST-RT-000050 - The Arista BGP router must be configured to reject outbound route advertisements for any prefixes that do not belong to any customers or the local autonomous system (AS).AristaDISA STIG Arista MLS EOS 4.2x Router v1r1
ARST-RT-000070 - The Arista Multicast Source Discovery Protocol (MSDP) router must be configured to filter received source-active multicast advertisements for any undesirable multicast groups and sources.AristaDISA STIG Arista MLS EOS 4.2x Router v1r1
ARST-RT-000080 - The Arista Multicast Source Discovery Protocol (MSDP) router must be configured to filter source-active multicast advertisements to external MSDP peers to avoid global visibility of local-only multicast sources and groups.AristaDISA STIG Arista MLS EOS 4.2x Router v1r1
ARST-RT-000090 - The Arista MSDP router must be configured to limit the amount of source-active messages it accepts on per-peer basis.AristaDISA STIG Arista MLS EOS 4.2x Router v1r1
CASA-ND-000140 - The Cisco ASA must be configured to enforce approved authorizations for controlling the flow of management information within the Cisco ASA based on information flow control policies.CiscoDISA STIG Cisco ASA NDM v1r3
CASA-ND-000140 - The Cisco ASA must be configured to enforce approved authorizations for controlling the flow of management information within the Cisco ASA based on information flow control policies.CiscoDISA STIG Cisco ASA NDM v1r6
CASA-ND-000140 - The Cisco ASA must be configured to enforce approved authorizations for controlling the flow of management information within the Cisco ASA based on information flow control policies.CiscoDISA STIG Cisco ASA NDM v1r1
CASA-ND-000140 - The Cisco ASA must be configured to enforce approved authorizations for controlling the flow of management information within the Cisco ASA based on information flow control policies.CiscoDISA STIG Cisco ASA NDM v1r5
CISC-ND-000140 - The Cisco router must be configured to enforce approved authorizations for controlling the flow of management information within the device based on control policiesCiscoDISA STIG Cisco IOS XE Router NDM v2r7
CISC-ND-000140 - The Cisco router must be configured to enforce approved authorizations for controlling the flow of management information within the device based on control policies - access-class denyCiscoDISA STIG Cisco IOS-XR Router NDM v2r2
CISC-ND-000140 - The Cisco router must be configured to enforce approved authorizations for controlling the flow of management information within the device based on control policies - access-class denyCiscoDISA STIG Cisco IOS-XR Router NDM v2r4
CISC-ND-000140 - The Cisco router must be configured to enforce approved authorizations for controlling the flow of management information within the device based on control policies - access-class denyCiscoDISA STIG Cisco IOS Router NDM v2r3
CISC-ND-000140 - The Cisco router must be configured to enforce approved authorizations for controlling the flow of management information within the device based on control policies - access-class denyCiscoDISA STIG Cisco IOS Router NDM v2r4
CISC-ND-000140 - The Cisco router must be configured to enforce approved authorizations for controlling the flow of management information within the device based on control policies - access-class denyCiscoDISA STIG Cisco IOS Router NDM v2r1
CISC-ND-000140 - The Cisco router must be configured to enforce approved authorizations for controlling the flow of management information within the device based on control policies - access-class denyCiscoDISA STIG Cisco IOS-XR Router NDM v2r1
CISC-ND-000140 - The Cisco router must be configured to enforce approved authorizations for controlling the flow of management information within the device based on control policies - access-class denyCiscoDISA STIG Cisco IOS-XR Router NDM v2r3
CISC-ND-000140 - The Cisco router must be configured to enforce approved authorizations for controlling the flow of management information within the device based on control policies - access-class denyCiscoDISA STIG Cisco IOS Router NDM v2r2
CISC-ND-000140 - The Cisco router must be configured to enforce approved authorizations for controlling the flow of management information within the device based on control policies - access-class permitCiscoDISA STIG Cisco IOS-XR Router NDM v2r2
CISC-ND-000140 - The Cisco router must be configured to enforce approved authorizations for controlling the flow of management information within the device based on control policies - access-class permitCiscoDISA STIG Cisco IOS Router NDM v2r1
CISC-ND-000140 - The Cisco router must be configured to enforce approved authorizations for controlling the flow of management information within the device based on control policies - access-class permitCiscoDISA STIG Cisco IOS-XR Router NDM v2r1
CISC-ND-000140 - The Cisco router must be configured to enforce approved authorizations for controlling the flow of management information within the device based on control policies - access-class permitCiscoDISA STIG Cisco IOS-XR Router NDM v2r3
CISC-ND-000140 - The Cisco router must be configured to enforce approved authorizations for controlling the flow of management information within the device based on control policies - access-class permitCiscoDISA STIG Cisco IOS Router NDM v2r2
CISC-ND-000140 - The Cisco router must be configured to enforce approved authorizations for controlling the flow of management information within the device based on control policies - access-class permitCiscoDISA STIG Cisco IOS Router NDM v2r3
CISC-ND-000140 - The Cisco router must be configured to enforce approved authorizations for controlling the flow of management information within the device based on control policies - access-class permitCiscoDISA STIG Cisco IOS Router NDM v2r4
CISC-ND-000140 - The Cisco router must be configured to enforce approved authorizations for controlling the flow of management information within the device based on control policies - access-class permitCiscoDISA STIG Cisco IOS-XR Router NDM v2r4
CISC-ND-000140 - The Cisco router must be configured to enforce approved authorizations for controlling the flow of management information within the device based on control policies - deny ruleCiscoDISA STIG Cisco IOS XE Router NDM v2r2
CISC-ND-000140 - The Cisco router must be configured to enforce approved authorizations for controlling the flow of management information within the device based on control policies - deny ruleCiscoDISA STIG Cisco IOS XE Router NDM v2r3
CISC-ND-000140 - The Cisco router must be configured to enforce approved authorizations for controlling the flow of management information within the device based on control policies - line defaultCiscoDISA STIG Cisco IOS-XR Router NDM v2r3
CISC-ND-000140 - The Cisco router must be configured to enforce approved authorizations for controlling the flow of management information within the device based on control policies - line defaultCiscoDISA STIG Cisco IOS-XR Router NDM v2r1
CISC-ND-000140 - The Cisco router must be configured to enforce approved authorizations for controlling the flow of management information within the device based on control policies - line defaultCiscoDISA STIG Cisco IOS-XR Router NDM v2r2
CISC-ND-000140 - The Cisco router must be configured to enforce approved authorizations for controlling the flow of management information within the device based on control policies - line defaultCiscoDISA STIG Cisco IOS-XR Router NDM v2r4
CISC-ND-000140 - The Cisco router must be configured to enforce approved authorizations for controlling the flow of management information within the device based on control policies - line vtyCiscoDISA STIG Cisco IOS Router NDM v2r1
CISC-ND-000140 - The Cisco router must be configured to enforce approved authorizations for controlling the flow of management information within the device based on control policies - line vtyCiscoDISA STIG Cisco IOS Router NDM v2r3
CISC-ND-000140 - The Cisco router must be configured to enforce approved authorizations for controlling the flow of management information within the device based on control policies - line vtyCiscoDISA STIG Cisco IOS Router NDM v2r4
CISC-ND-000140 - The Cisco router must be configured to enforce approved authorizations for controlling the flow of management information within the device based on control policies - line vtyCiscoDISA STIG Cisco IOS XE Router NDM v2r2
CISC-ND-000140 - The Cisco router must be configured to enforce approved authorizations for controlling the flow of management information within the device based on control policies - line vtyCiscoDISA STIG Cisco IOS XE Router NDM v2r3
CISC-ND-000140 - The Cisco router must be configured to enforce approved authorizations for controlling the flow of management information within the device based on control policies - line vtyCiscoDISA STIG Cisco IOS Router NDM v2r2
CISC-ND-000140 - The Cisco router must be configured to enforce approved authorizations for controlling the flow of management information within the device based on control policies - vty-poolCiscoDISA STIG Cisco IOS-XR Router NDM v2r2
CISC-ND-000140 - The Cisco router must be configured to enforce approved authorizations for controlling the flow of management information within the device based on control policies - vty-poolCiscoDISA STIG Cisco IOS-XR Router NDM v2r3
CISC-ND-000140 - The Cisco router must be configured to enforce approved authorizations for controlling the flow of management information within the device based on control policies - vty-poolCiscoDISA STIG Cisco IOS-XR Router NDM v2r1
CISC-ND-000140 - The Cisco router must be configured to enforce approved authorizations for controlling the flow of management information within the device based on control policies - vty-poolCiscoDISA STIG Cisco IOS-XR Router NDM v2r4
CISC-ND-000140 - The Cisco router must be configured to enforce approved authorizations for controlling the flow of management information within the device based on control policies.CiscoDISA STIG Cisco IOS Router NDM v2r6
CISC-ND-000140 - The Cisco router must be configured to enforce approved authorizations for controlling the flow of management information within the device based on control policies.CiscoDISA STIG Cisco IOS Router NDM v2r8
CISC-ND-000140 - The Cisco router must be configured to enforce approved authorizations for controlling the flow of management information within the device based on control policies.CiscoDISA STIG Cisco IOS XE Router NDM v2r8