CCI-001112

Route organization-defined internal communications traffic to organization-defined external networks through authenticated proxy servers at managed interfaces.

Implementation Guidance

Determine if [SC-07(08)_ODP[01]; internal communications traffic to be routed to external networks is defined] is routed to [SC-07(08)_ODP[02]; external networks to which internal communications traffic is to be routed are defined] through authenticated proxy servers at managed interfaces.

Validation Procedures

Examine: [SELECT FROM: System and communications protection policy; procedures addressing boundary protection; system design documentation; system hardware and software; system architecture; system configuration settings and associated documentation; system audit records; system security plan; other relevant documents or records]. Interview: [SELECT FROM: System/network administrators; organizational personnel with information security responsibilities; system developer; organizational personnel with boundary protection responsibilities]. Test: [SELECT FROM: Mechanisms implementing traffic management through authenticated proxy servers at managed interfaces].

The controls below (if any) were marked by NIST as being related to CCI-001112.