Network Infrastructure Policy STIG Version Comparison

There are 1 differences between versions v10 r4 (Jan. 26, 2023) (the "left" version) and v10 r6 (June 7, 2023) (the "right" version).

Check NET1025 was changed between these two versions. Green, underlined text was added, red, struck-out text was removed.

The regular view of the left check and right check may be easier to read.

Title

A centralized minimum of two syslog server servers must be deployed in the management network.

Check Content

Review the network topology and verify that a at least two syslog server servers is are located within the management network. Note the IP address addresses as documented on the management network topology and verify that this is what is configured on the network elements as the host device devices for sending syslog data. If a centralized minimum of two syslog server servers has have not been deployed in the management network, this is a finding.

Discussion

Maintaining an audit trail of system activity logs can help identify configuration errors, understand past intrusions, troubleshoot service disruptions, and react to probes and scans of the network.

Fix

Stand up a at least two syslog server servers and connect it them to the management network. Configure all managed network elements to send syslog data to the syslog server. servers.