Check: OL6-00-000103
Oracle Linux 6 STIG:
OL6-00-000103
(in versions v2 r7 through v1 r9)
Title
The system must employ a local IPv6 firewall. (Cat II impact)
Discussion
The "ip6tables" service provides the system's host-based firewalling capability for IPv6 and ICMPv6.
Check Content
If the system is a cross-domain system, this is not applicable. If IPv6 is disabled, this is not applicable. Run the following command to determine the current status of the "ip6tables" service: # service ip6tables status If the service is not running, it should return the following: ip6tables: Firewall is not running. If the service is not running, this is a finding.
Fix Text
The "ip6tables" service can be enabled with the following commands: # chkconfig ip6tables on # service ip6tables start
Additional Identifiers
Rule ID: SV-219548r793805_rule
Vulnerability ID: V-219548
Group Title: SRG-OS-000480
Expert Comments
CCIs
Number | Definition |
---|---|
CCI-000366 |
The organization implements the security configuration settings. |
CCI-001118 |
The information system implements host-based boundary protection mechanisms for servers, workstations, and mobile devices. |
Controls
Number | Title |
---|---|
CM-6 |
Configuration Settings |