CCI|CCI-001368

Title

The information system enforces approved authorizations for controlling the flow of information within the system based on organization-defined information flow control policies.

Reference Item Details

Category: 2009

Audit Items

View all Reference Audit Items

NamePluginAudit Name
AMLS-L2-000100 - The Arista Multilayer Switch must enforce approved authorizations for controlling the flow of information within the network based on organization-defined information flow control policies.AristaDISA STIG Arista MLS DCS-7000 Series L2S v1r2
CASA-ND-000140 - The Cisco ASA must be configured to enforce approved authorizations for controlling the flow of management information within the Cisco ASA based on information flow control policies.CiscoDISA STIG Cisco ASA NDM v1r1
CISC-ND-000140 - The Cisco router must be configured to enforce approved authorizations for controlling the flow of management information within the device based on control policies - access-class denyCiscoDISA STIG Cisco IOS Router NDM v2r4
CISC-ND-000140 - The Cisco router must be configured to enforce approved authorizations for controlling the flow of management information within the device based on control policies - access-class denyCiscoDISA STIG Cisco IOS-XR Router NDM v2r2
CISC-ND-000140 - The Cisco router must be configured to enforce approved authorizations for controlling the flow of management information within the device based on control policies - access-class permitCiscoDISA STIG Cisco IOS-XR Router NDM v2r2
CISC-ND-000140 - The Cisco router must be configured to enforce approved authorizations for controlling the flow of management information within the device based on control policies - access-class permitCiscoDISA STIG Cisco IOS Router NDM v2r4
CISC-ND-000140 - The Cisco router must be configured to enforce approved authorizations for controlling the flow of management information within the device based on control policies - deny ruleCiscoDISA STIG Cisco IOS XE Router NDM v2r3
CISC-ND-000140 - The Cisco router must be configured to enforce approved authorizations for controlling the flow of management information within the device based on control policies - line defaultCiscoDISA STIG Cisco IOS-XR Router NDM v2r2
CISC-ND-000140 - The Cisco router must be configured to enforce approved authorizations for controlling the flow of management information within the device based on control policies - line vtyCiscoDISA STIG Cisco IOS Router NDM v2r4
CISC-ND-000140 - The Cisco router must be configured to enforce approved authorizations for controlling the flow of management information within the device based on control policies - line vtyCiscoDISA STIG Cisco IOS XE Router NDM v2r3
CISC-ND-000140 - The Cisco router must be configured to enforce approved authorizations for controlling the flow of management information within the device based on control policies - vty-poolCiscoDISA STIG Cisco IOS-XR Router NDM v2r2
CISC-ND-000140 - The Cisco switch must be configured to enforce approved authorizations for controlling the flow of management information within the device based on control policies - access-class denyCiscoDISA STIG Cisco IOS XE Switch NDM v2r2
CISC-ND-000140 - The Cisco switch must be configured to enforce approved authorizations for controlling the flow of management information within the device based on control policies - line vty access-classCiscoDISA STIG Cisco IOS XE Switch NDM v2r2
CISC-ND-000140 - The Cisco switch must be configured to enforce approved authorizations for controlling the flow of management information within the device based on control policies - line vty access-classCiscoDISA STIG Cisco IOS Switch NDM v2r3
CISC-ND-000140 - The Cisco switch must be configured to enforce approved authorizations for controlling the flow of management information within the device based on control policies - line vty access-classCiscoDISA STIG Cisco NX-OS Switch NDM v2r3
CISC-ND-000140 - The Cisco switch must be configured to enforce approved authorizations for controlling the flow of management information within the device based on control policies - line vty sshCiscoDISA STIG Cisco IOS XE Switch NDM v2r2
CISC-ND-000140 - The Cisco switch must be configured to enforce approved authorizations for controlling the flow of management information within the device based on control policies - line vty sshCiscoDISA STIG Cisco IOS Switch NDM v2r3
CISC-ND-000140 - The Cisco switch must be configured to enforce approved authorizations for controlling the flow of management information within the device based on control policies - management access-listCiscoDISA STIG Cisco NX-OS Switch NDM v2r3
CISC-ND-000140 - The Cisco switch must be configured to enforce approved authorizations for controlling the flow of management information within the device based on control policies - management access-listCiscoDISA STIG Cisco IOS Switch NDM v2r3
CISC-ND-000140 - The Cisco switch must be configured to enforce approved authorizations for controlling the flow of management information within the device based on control policies - management access-listCiscoDISA STIG Cisco IOS XE Switch NDM v2r2
CISC-RT-000010 - The Cisco router must be configured to enforce approved authorizations for controlling the flow of information within the network based on organization-defined information flow control policies - ip access-groupCiscoDISA STIG Cisco IOS Router RTR v2r1
CISC-RT-000010 - The Cisco router must be configured to enforce approved authorizations for controlling the flow of information within the network based on organization-defined information flow control policies - ip access-groupCiscoDISA STIG Cisco IOS-XR Router RTR v2r1
CISC-RT-000010 - The Cisco router must be configured to enforce approved authorizations for controlling the flow of information within the network based on organization-defined information flow control policies - ip access-groupCiscoDISA STIG Cisco IOS XE Router RTR v2r4
CISC-RT-000010 - The Cisco router must be configured to enforce approved authorizations for controlling the flow of information within the network based on organization-defined information flow control policies - ip access-list extendedCiscoDISA STIG Cisco IOS-XR Router RTR v2r1
CISC-RT-000010 - The Cisco router must be configured to enforce approved authorizations for controlling the flow of information within the network based on organization-defined information flow control policies - ip access-list extendedCiscoDISA STIG Cisco IOS XE Router RTR v2r4
CISC-RT-000010 - The Cisco router must be configured to enforce approved authorizations for controlling the flow of information within the network based on organization-defined information flow control policies - ip access-list extendedCiscoDISA STIG Cisco IOS Router RTR v2r1
CISC-RT-000010 - The Cisco switch must be configured to enforce approved authorizations for controlling the flow of information within the network based on organization-defined information flow control policies.CiscoDISA STIG Cisco NX-OS Switch RTR v2r1
CISC-RT-000010 - The Cisco switch must be configured to enforce approved authorizations for controlling the flow of information within the network based on organization-defined information flow control policies.CiscoDISA STIG Cisco IOS Switch RTR v2r1
CISC-RT-000010 - The Cisco switch must be configured to enforce approved authorizations for controlling the flow of information within the network based on organization-defined information flow control policies.CiscoDISA STIG Cisco IOS XE Switch RTR v2r1
CISC-RT-000490 - The Cisco BGP router must be configured to reject inbound route advertisements for any Bogon prefixes - neighborCiscoDISA STIG Cisco IOS Router RTR v2r1
CISC-RT-000490 - The Cisco BGP router must be configured to reject inbound route advertisements for any Bogon prefixes - neighborCiscoDISA STIG Cisco IOS-XR Router RTR v2r1
CISC-RT-000490 - The Cisco BGP router must be configured to reject inbound route advertisements for any Bogon prefixes - neighborCiscoDISA STIG Cisco IOS XE Router RTR v2r4
CISC-RT-000490 - The Cisco BGP router must be configured to reject inbound route advertisements for any Bogon prefixes - show ip prefix-listCiscoDISA STIG Cisco IOS Router RTR v2r1
CISC-RT-000490 - The Cisco BGP router must be configured to reject inbound route advertisements for any Bogon prefixes - show ip prefix-listCiscoDISA STIG Cisco IOS-XR Router RTR v2r1
CISC-RT-000490 - The Cisco BGP router must be configured to reject inbound route advertisements for any Bogon prefixes - show ip prefix-listCiscoDISA STIG Cisco IOS XE Router RTR v2r4
CISC-RT-000490 - The Cisco BGP switch must be configured to reject inbound route advertisements for any Bogon prefixes - 0.0.0.0CiscoDISA STIG Cisco NX-OS Switch RTR v2r1
CISC-RT-000490 - The Cisco BGP switch must be configured to reject inbound route advertisements for any Bogon prefixes - 10.0.0.0CiscoDISA STIG Cisco NX-OS Switch RTR v2r1
CISC-RT-000490 - The Cisco BGP switch must be configured to reject inbound route advertisements for any Bogon prefixes - 100.64.0.0CiscoDISA STIG Cisco NX-OS Switch RTR v2r1
CISC-RT-000490 - The Cisco BGP switch must be configured to reject inbound route advertisements for any Bogon prefixes - 127.0.0.0CiscoDISA STIG Cisco NX-OS Switch RTR v2r1
CISC-RT-000490 - The Cisco BGP switch must be configured to reject inbound route advertisements for any Bogon prefixes - 169.254.0.0CiscoDISA STIG Cisco NX-OS Switch RTR v2r1
CISC-RT-000490 - The Cisco BGP switch must be configured to reject inbound route advertisements for any Bogon prefixes - 172.16.0.0CiscoDISA STIG Cisco NX-OS Switch RTR v2r1
CISC-RT-000490 - The Cisco BGP switch must be configured to reject inbound route advertisements for any Bogon prefixes - 192.0.2.0CiscoDISA STIG Cisco NX-OS Switch RTR v2r1
CISC-RT-000490 - The Cisco BGP switch must be configured to reject inbound route advertisements for any Bogon prefixes - 192.88.99.0CiscoDISA STIG Cisco NX-OS Switch RTR v2r1
CISC-RT-000490 - The Cisco BGP switch must be configured to reject inbound route advertisements for any Bogon prefixes - 192.168.0.0CiscoDISA STIG Cisco NX-OS Switch RTR v2r1
CISC-RT-000490 - The Cisco BGP switch must be configured to reject inbound route advertisements for any Bogon prefixes - 198.18.0.0CiscoDISA STIG Cisco NX-OS Switch RTR v2r1
CISC-RT-000490 - The Cisco BGP switch must be configured to reject inbound route advertisements for any Bogon prefixes - 198.51.100.0CiscoDISA STIG Cisco NX-OS Switch RTR v2r1
CISC-RT-000490 - The Cisco BGP switch must be configured to reject inbound route advertisements for any Bogon prefixes - 203.0.113.0CiscoDISA STIG Cisco NX-OS Switch RTR v2r1
CISC-RT-000490 - The Cisco BGP switch must be configured to reject inbound route advertisements for any Bogon prefixes - 224.0.0.0CiscoDISA STIG Cisco NX-OS Switch RTR v2r1
CISC-RT-000490 - The Cisco BGP switch must be configured to reject inbound route advertisements for any Bogon prefixes - 240.0.0.0CiscoDISA STIG Cisco NX-OS Switch RTR v2r1
CISC-RT-000490 - The Cisco BGP switch must be configured to reject inbound route advertisements for any Bogon prefixes - neighborCiscoDISA STIG Cisco IOS XE Switch RTR v2r1