Check: RHEL-06-000113
Red Hat Enterprise Linux 6 STIG:
RHEL-06-000113
(in versions v2 r2 through v1 r14)
Title
The system must employ a local IPv4 firewall. (Cat II impact)
Discussion
The "iptables" service provides the system's host-based firewalling capability for IPv4 and ICMP.
Check Content
If the system is a cross-domain system, this is not applicable. Run the following command to determine the current status of the "iptables" service: # service iptables status If the service is not running, it should return the following: iptables: Firewall is not running. If the service is not running, this is a finding.
Fix Text
The "iptables" service can be enabled with the following commands: # chkconfig iptables on # service iptables start
Additional Identifiers
Rule ID: SV-217930r603264_rule
Vulnerability ID: V-217930
Group Title: SRG-OS-000480
Expert Comments
CCIs
| Number | Definition |
|---|---|
| CCI-000366 |
The organization implements the security configuration settings. |
| CCI-001118 |
The information system implements host-based boundary protection mechanisms for servers, workstations, and mobile devices. |
| CCI-002406 |
The organization implements organization-defined host-based boundary protection mechanisms at organization-defined information system components. |