CSCv7|14.2

Title

Enable Firewall Filtering Between VLANs

Description

Enable firewall filtering between VLANs to ensure that only authorized systems are able to communicate with other systems necessary to fulfill their specific responsibilities.

Reference Item Details

Category: Controlled Access Based on the Need to Know

Audit Items

View all Reference Audit Items

NamePluginAudit Name
1.6.3 Create network segmentation using Network PoliciesUnixCIS Kubernetes 1.13 Benchmark v1.4.1 L2
2.3.10.6 (L1) Ensure 'Network access: Named Pipes that can be accessed anonymously' is set to 'None'WindowsCIS Microsoft Windows 8.1 v2.4.1 L1 Bitlocker
2.3.10.6 Configure 'Network access: Named Pipes that can be accessed anonymously' (DC only)WindowsCIS Microsoft Windows Server 2008 Domain Controller Level 1 v3.3.0
2.3.10.6 Ensure 'Network access: Named Pipes that can be accessed anonymously' is set to 'None'WindowsCIS Microsoft Windows 8.1 v2.4.1 L1
2.3.10.7 Configure 'Network access: Named Pipes that can be accessed anonymously' (MS only)WindowsCIS Microsoft Windows Server 2008 Member Server Level 1 v3.3.0
4.3.2 Ensure that all Namespaces have Network Policies definedGCPCIS Google Kubernetes Engine (GKE) v1.5.0 L2
5.3.2 Ensure that all Namespaces have Network Policies definedUnixCIS Kubernetes v1.24 Benchmark v1.0.0 L2 Master
5.3.2 Ensure that all Namespaces have Network Policies definedUnixCIS Kubernetes v1.20 Benchmark v1.0.1 L2 Master
5.3.2 Ensure that all Namespaces have Network Policies definedUnixCIS Kubernetes Benchmark v1.8.0 L2 Master
5.3.2 Ensure that all Namespaces have Network Policies definedUnixCIS Kubernetes v1.23 Benchmark v1.0.1 L2 Master
5.3.2 Ensure that all Namespaces have Network Policies defined - NamespacesOpenShiftCIS RedHat OpenShift Container Platform 4 v1.5.0 L2
5.3.2 Ensure that all Namespaces have Network Policies defined - NetworkPoliciesOpenShiftCIS RedHat OpenShift Container Platform 4 v1.5.0 L2
6.3 Ensure storage area network (SAN) resources are segregated properlyVMwareCIS VMware ESXi 6.5 v1.0.0 Level 1
6.3 Ensure storage area network (SAN) resources are segregated properlyVMwareCIS VMware ESXi 6.7 v1.3.0 Level 1
6.3 Ensure storage area network (SAN) resources are segregated properlyVMwareCIS VMware ESXi 7.0 v1.3.0 Level 1
18.9.35.1 (L1) Ensure 'Prevent the computer from joining a homegroup' is set to 'Enabled'WindowsCIS Microsoft Windows 8.1 v2.4.1 L1 Bitlocker
18.9.35.1 Ensure 'Prevent the computer from joining a homegroup' is set to 'Enabled'WindowsCIS Microsoft Windows 8.1 v2.4.1 L1