STIGQter: STIG Summary: Router Security Requirements Guide Version: 4 Release: 2 Benchmark Date: 23 Apr 2021:

The PE router must be configured to have each VRF with the appropriate Route Distinguisher (RD).

DISA Rule

SV-207178r604135_rule

Vulnerability Number

V-207178

Group Title

SRG-NET-000512

Rule Version

SRG-NET-000512-RTR-000007

Severity

CAT II

CCI(s)

• CCI-000366 - The organization implements the security configuration settings.

Weight

10

Fix Recommendation

Configure the correct RD for each VRF.

Check Contents

Review the RDs that have been assigned for each VRF according to the plan provided by the ISSM.

Review all VRFs configured on CE-facing interfaces and verify that the proper RD has been configured for each.

If the wrong RD has been configured for any VRF, this is a finding.

Vulnerability Number

V-207178

Documentable

False

Rule Version

SRG-NET-000512-RTR-000007

Severity Override Guidance

Review the RDs that have been assigned for each VRF according to the plan provided by the ISSM.

Review all VRFs configured on CE-facing interfaces and verify that the proper RD has been configured for each.

If the wrong RD has been configured for any VRF, this is a finding.

Check Content Reference

M

Target Key

2917

Comments