STIGQter: STIG Summary: Virtual Private Network (VPN) Security Requirements Guide Version: 2 Release: 3 Benchmark Date: 23 Apr 2021:

The VPN Gateway must off-load audit records onto a different system or media than the system being audited.

DISA Rule

SV-207234r608988_rule

Vulnerability Number

V-207234

Group Title

SRG-NET-000334

Rule Version

SRG-NET-000334-VPN-001260

Severity

CAT II

CCI(s)

• CCI-001851 - The information system off-loads audit records per organization-defined frequency onto a different system or media than the system being audited.

Weight

10

Fix Recommendation

Configure the VPN Gateway to off-load audit records onto a different system or media than the system being audited.

Check Contents

Verify the VPN Gateway off-loads log records onto a different system or media than the system being audited.

If the VPN Gateway does not off-load audit records onto a different system or media than the system being audited, this is a finding.

Vulnerability Number

V-207234

Documentable

False

Rule Version

SRG-NET-000334-VPN-001260

Severity Override Guidance

Verify the VPN Gateway off-loads log records onto a different system or media than the system being audited.

If the VPN Gateway does not off-load audit records onto a different system or media than the system being audited, this is a finding.

Check Content Reference

M

Target Key

2920

Comments