Audits
Settings
Links
Tenable.io
Tenable Community & Support
Tenable University
Theme
Light
Dark
Auto
Help
Links
Tenable.io
Tenable Community & Support
Tenable University
Settings
Theme
Light
Dark
Auto
Newest
Updated
Search Audit Files
Search Items
References
Authorities
Documentation
Download All Audit Files
Newest
Updated
Search Audit Files
Search Items
References
Authorities
Documentation
Download All Audit Files
Audits
References
CCI
CCI-001097
CCI
CCI|CCI-001097
Title
The information system monitors and controls communications at the external boundary of the information system and at key internal boundaries within the system.
Reference Item Details
Reference:
CCI - DISA Control Correlation Identifier
Category:
2009
Audit Items
View all Reference Audit Items
Name
Plugin
Audit Name
AMLS-L3-000290 - The Arista Multilayer Switch must configure the maximum hop limit value to at least 32.
Arista
DISA STIG Arista MLS DCS-7000 Series RTR v1r3
CISC-RT-000130 - The Cisco router must be configured to restrict traffic destined to itself.
Cisco
DISA STIG Cisco IOS-XR Router RTR v2r1
CISC-RT-000130 - The Cisco router must be configured to restrict traffic destined to itself.
Cisco
DISA STIG Cisco IOS Router RTR v2r1
CISC-RT-000130 - The Cisco router must be configured to restrict traffic destined to itself.
Cisco
DISA STIG Cisco IOS XE Router RTR v2r4
CISC-RT-000130 - The Cisco switch must be configured to restrict traffic destined to itself.
Cisco
DISA STIG Cisco NX-OS Switch RTR v2r1
CISC-RT-000130 - The Cisco switch must be configured to restrict traffic destined to itself.
Cisco
DISA STIG Cisco IOS XE Switch RTR v2r1
CISC-RT-000130 - The Cisco switch must be configured to restrict traffic destined to itself.
Cisco
DISA STIG Cisco IOS Switch RTR v2r1
CISC-RT-000140 - The Cisco router must be configured to drop all fragmented Internet Control Message Protocol (ICMP) packets destined to itself - external
Cisco
DISA STIG Cisco IOS Router RTR v2r1
CISC-RT-000140 - The Cisco router must be configured to drop all fragmented Internet Control Message Protocol (ICMP) packets destined to itself - external
Cisco
DISA STIG Cisco IOS-XR Router RTR v2r1
CISC-RT-000140 - The Cisco router must be configured to drop all fragmented Internet Control Message Protocol (ICMP) packets destined to itself - external
Cisco
DISA STIG Cisco IOS XE Router RTR v2r4
CISC-RT-000140 - The Cisco router must be configured to drop all fragmented Internet Control Message Protocol (ICMP) packets destined to itself - internal
Cisco
DISA STIG Cisco IOS-XR Router RTR v2r1
CISC-RT-000140 - The Cisco router must be configured to drop all fragmented Internet Control Message Protocol (ICMP) packets destined to itself - internal
Cisco
DISA STIG Cisco IOS Router RTR v2r1
CISC-RT-000140 - The Cisco router must be configured to drop all fragmented Internet Control Message Protocol (ICMP) packets destined to itself - internal
Cisco
DISA STIG Cisco IOS XE Router RTR v2r4
CISC-RT-000140 - The Cisco switch must be configured to drop all fragmented Internet Control Message Protocol (ICMP) packets destined to itself - external
Cisco
DISA STIG Cisco NX-OS Switch RTR v2r1
CISC-RT-000140 - The Cisco switch must be configured to drop all fragmented Internet Control Message Protocol (ICMP) packets destined to itself - internal
Cisco
DISA STIG Cisco NX-OS Switch RTR v2r1
CISC-RT-000140 - The Cisco switch must be configured to drop all fragmented Internet Control Message Protocol (ICMP) packets destined to itself.
Cisco
DISA STIG Cisco IOS XE Switch RTR v2r1
CISC-RT-000140 - The Cisco switch must be configured to drop all fragmented Internet Control Message Protocol (ICMP) packets destined to itself.
Cisco
DISA STIG Cisco IOS Switch RTR v2r1
CISC-RT-000320 - The Cisco perimeter router must be configured to filter traffic destined to the enclave in accordance with the guidelines contained in DoD Instruction 8551.1.
Cisco
DISA STIG Cisco IOS-XR Router RTR v2r1
CISC-RT-000320 - The Cisco perimeter router must be configured to filter traffic destined to the enclave in accordance with the guidelines contained in DoD Instruction 8551.1.
Cisco
DISA STIG Cisco IOS Router RTR v2r1
CISC-RT-000320 - The Cisco perimeter router must be configured to filter traffic destined to the enclave in accordance with the guidelines contained in DoD Instruction 8551.1.
Cisco
DISA STIG Cisco IOS XE Router RTR v2r4
CISC-RT-000320 - The Cisco perimeter switch must be configured to filter traffic destined to the enclave in accordance with the guidelines contained in DoD Instruction 8551.1.
Cisco
DISA STIG Cisco NX-OS Switch RTR v2r1
CISC-RT-000320 - The Cisco perimeter switch must be configured to filter traffic destined to the enclave in accordance with the guidelines contained in DoD Instruction 8551.1.
Cisco
DISA STIG Cisco IOS Switch RTR v2r1
CISC-RT-000320 - The Cisco perimeter switch must be configured to filter traffic destined to the enclave in accordance with the guidelines contained in DoD Instruction 8551.1.
Cisco
DISA STIG Cisco IOS XE Switch RTR v2r1
CISC-RT-000330 - The Cisco perimeter router must be configured to filter ingress traffic at the external interface on an inbound direction.
Cisco
DISA STIG Cisco IOS XE Router RTR v2r4
CISC-RT-000330 - The Cisco perimeter router must be configured to filter ingress traffic at the external interface on an inbound direction.
Cisco
DISA STIG Cisco IOS Router RTR v2r1
CISC-RT-000330 - The Cisco perimeter router must be configured to filter ingress traffic at the external interface on an inbound direction.
Cisco
DISA STIG Cisco IOS-XR Router RTR v2r1
CISC-RT-000330 - The Cisco perimeter switch must be configured to filter ingress traffic at the external interface on an inbound direction.
Cisco
DISA STIG Cisco NX-OS Switch RTR v2r1
CISC-RT-000330 - The Cisco perimeter switch must be configured to filter ingress traffic at the external interface on an inbound direction.
Cisco
DISA STIG Cisco IOS XE Switch RTR v2r1
CISC-RT-000330 - The Cisco perimeter switch must be configured to filter ingress traffic at the external interface on an inbound direction.
Cisco
DISA STIG Cisco IOS Switch RTR v2r1
CISC-RT-000340 - The Cisco perimeter router must be configured to filter egress traffic at the internal interface on an inbound direction.
Cisco
DISA STIG Cisco IOS XE Router RTR v2r4
CISC-RT-000340 - The Cisco perimeter router must be configured to filter egress traffic at the internal interface on an inbound direction.
Cisco
DISA STIG Cisco IOS-XR Router RTR v2r1
CISC-RT-000340 - The Cisco perimeter router must be configured to filter egress traffic at the internal interface on an inbound direction.
Cisco
DISA STIG Cisco IOS Router RTR v2r1
CISC-RT-000340 - The Cisco perimeter switch must be configured to filter egress traffic at the internal interface on an inbound direction.
Cisco
DISA STIG Cisco NX-OS Switch RTR v2r1
CISC-RT-000340 - The Cisco perimeter switch must be configured to filter egress traffic at the internal interface on an inbound direction.
Cisco
DISA STIG Cisco IOS XE Switch RTR v2r1
CISC-RT-000340 - The Cisco perimeter switch must be configured to filter egress traffic at the internal interface on an inbound direction.
Cisco
DISA STIG Cisco IOS Switch RTR v2r1
CISC-RT-000390 - The Cisco perimeter router must be configured to block all outbound management traffic - ip access-group EXTERNAL_ACL_OUTBOUND out
Cisco
DISA STIG Cisco IOS XE Router RTR v2r4
CISC-RT-000390 - The Cisco perimeter router must be configured to block all outbound management traffic - ip access-group EXTERNAL_ACL_OUTBOUND out
Cisco
DISA STIG Cisco IOS-XR Router RTR v2r1
CISC-RT-000390 - The Cisco perimeter router must be configured to block all outbound management traffic - ip access-group EXTERNAL_ACL_OUTBOUND out
Cisco
DISA STIG Cisco IOS Router RTR v2r1
CISC-RT-000390 - The Cisco perimeter router must be configured to block all outbound management traffic - ip access-list extended EXTERNAL_ACL_OUTBOUND
Cisco
DISA STIG Cisco IOS Router RTR v2r1
CISC-RT-000390 - The Cisco perimeter router must be configured to block all outbound management traffic - ip access-list extended EXTERNAL_ACL_OUTBOUND
Cisco
DISA STIG Cisco IOS-XR Router RTR v2r1
CISC-RT-000390 - The Cisco perimeter router must be configured to block all outbound management traffic - ip access-list extended EXTERNAL_ACL_OUTBOUND
Cisco
DISA STIG Cisco IOS XE Router RTR v2r4
CISC-RT-000390 - The Cisco perimeter switch must be configured to block all outbound management traffic - ip access-group EXTERNAL_ACL_OUTBOUND out
Cisco
DISA STIG Cisco NX-OS Switch RTR v2r1
CISC-RT-000390 - The Cisco perimeter switch must be configured to block all outbound management traffic - ip access-group EXTERNAL_ACL_OUTBOUND out
Cisco
DISA STIG Cisco IOS Switch RTR v2r1
CISC-RT-000390 - The Cisco perimeter switch must be configured to block all outbound management traffic - ip access-group EXTERNAL_ACL_OUTBOUND out
Cisco
DISA STIG Cisco IOS XE Switch RTR v2r1
CISC-RT-000390 - The Cisco perimeter switch must be configured to block all outbound management traffic - ip access-list extended EXTERNAL_ACL_OUTBOUND
Cisco
DISA STIG Cisco IOS XE Switch RTR v2r1
CISC-RT-000390 - The Cisco perimeter switch must be configured to block all outbound management traffic - ip access-list extended EXTERNAL_ACL_OUTBOUND
Cisco
DISA STIG Cisco NX-OS Switch RTR v2r1
CISC-RT-000390 - The Cisco perimeter switch must be configured to block all outbound management traffic - ip access-list extended EXTERNAL_ACL_OUTBOUND
Cisco
DISA STIG Cisco IOS Switch RTR v2r1
CISC-RT-000400 - The Cisco out-of-band management (OOBM) gateway router must be configured to transport management traffic to the Network Operations Center (NOC) via dedicated circuit, MPLS/VPN service, or IPsec tunnel.
Cisco
DISA STIG Cisco IOS XE Router RTR v2r4
CISC-RT-000400 - The Cisco out-of-band management (OOBM) gateway router must be configured to transport management traffic to the Network Operations Center (NOC) via dedicated circuit, MPLS/VPN service, or IPsec tunnel.
Cisco
DISA STIG Cisco IOS-XR Router RTR v2r1
CISC-RT-000400 - The Cisco out-of-band management (OOBM) gateway router must be configured to transport management traffic to the Network Operations Center (NOC) via dedicated circuit, MPLS/VPN service, or IPsec tunnel.
Cisco
DISA STIG Cisco IOS Router RTR v2r1