Check: GEN008520
AIX 5.3 STIG:
GEN008520
(in version v1 r3)
Title
The system must employ a local firewall. (Cat II impact)
Discussion
A local firewall protects the system from exposing unnecessary or undocumented network services to the local enclave. If a system within the enclave is compromised, firewall protection on an individual system continues to protect it from attack.
Check Content
Determine if the system is using a local firewall. # lsfilt # smitty ipsec4 If local firewall is not configured and running, this is a finding.
Fix Text
Configure the system to use a local firewall. Use SMIT to load the IPSEC filesets. #smit install Use SMIT to configure filters. #smit ipsec4
Additional Identifiers
Rule ID: SV-38961r1_rule
Vulnerability ID: V-22582
Group Title:
Expert Comments
CCIs
Number | Definition |
---|---|
CCI-001118 |
The information system implements host-based boundary protection mechanisms for servers, workstations, and mobile devices. |
Controls
Number | Title |
---|---|
No controls are assigned to this check |