Title

The operating system must enable an application firewall, if available. (Cat II impact)

Discussion

Firewalls protect computers from network attacks by blocking or limiting access to open network ports. Application firewalls limit which applications are allowed to communicate over the network. Satisfies: SRG-OS-000480-GPOS-00232

Check Content

Verify the operating system enabled an application firewall, if available. If it does not, this is a finding. If the operating system does not support an application firewall, this may be downgraded to a CAT III finding. $ grep pf_ /etc/rc.conf pf_enable="YES" pf_flags="" "pf_enable" must be set to YES. (There may be additional lines.)

Fix Text

Ensure the operating system's application firewall is enabled, if available.

Additional Identifiers

Rule ID:

Vulnerability ID: V-2320

Group Title:

Expert Comments

CCIs tied to check.

Controls tied to check. These are derived from the CCIs shown above.