Apr 8, 2024 Functional Update- CISC-L2-000030 - The Cisco switch must authenticate all VLAN Trunk Protocol (VTP) messages with a hash function using the most secured cryptographic algorithm available.
|
Apr 3, 2024 Miscellaneous- Audit deprecated.
- Metadata updated.
- References updated.
|
Dec 12, 2023 Miscellaneous- Metadata updated.
- See also link updated.
Added- CISC-L2-000020 - The Cisco switch must uniquely identify all network-connected endpoint devices before establishing any connection.
- CISC-L2-000080 - The Cisco switch must authenticate all endpoint devices before establishing any connection.
- CISC-L2-000130 - The Cisco switch must have DHCP snooping for all user VLANs to validate DHCP messages from untrusted sources.
- CISC-L2-000170 - The Cisco switch must have IGMP or MLD Snooping configured on all VLANs.
Removed- CISC-L2-000020 - The Cisco switch must uniquely identify all network-connected endpoint devices before establishing any connection
- CISC-L2-000080 - The Cisco switch must authenticate all endpoint devices before establishing any connection
- CISC-L2-000130 - The Cisco switch must have DHCP snooping for all user VLANs to validate DHCP messages from untrusted sources
- CISC-L2-000170 - The Cisco switch must have IGMP or MLD Snooping configured on all VLANs
|